Lucene search

K

GitHub_MCVELIST:CVE-2020-4031

HistoryJun 22, 2020 - 12:00 a.m.

CVE-2020-4031 Use-After-Free in gdi_SelectObject in FreeRDP

2020-06-2200:00:00

CWE-416

GitHub_M

www.cve.org

3.5 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

7.4 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.0%

In FreeRDP before version 2.1.2, there is a use-after-free in gdi_SelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2.

CNA Affected

[
  {
    "vendor": "FreeRDP",
    "product": "FreeRDP",
    "versions": [
      {
        "version": "< 2.1.2",
        "status": "affected"
      }
    ]
  }
]

References

lists.opensuse.org/opensuse-security-announce/2020-07/msg00080.html

www.freerdp.com/2020/06/22/2_1_2-released

github.com/FreeRDP/FreeRDP/commit/6d86e20e1e7caaab4f0c7f89e36d32914dbccc52

github.com/FreeRDP/FreeRDP/security/advisories/GHSA-gwcq-hpq2-m74g

lists.debian.org/debian-lts-announce/2023/10/msg00008.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y35HBHG2INICLSGCIKNAR7GCXEHQACQ/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XOZLH35OJWIQLM7FYDXAP2EAUBDXE76V/

usn.ubuntu.com/4481-1/

3.5 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

7.4 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.0%

Related for CVELIST:CVE-2020-4031

nvd1 cve1 redhatcve1 osv2 ubuntucve1 prion1 veracode1 alpinelinux1 debiancve1 altlinux1 openvas7 fedora2 nessus5 archlinux1 ubuntu1 suse1 mageia1 debian1