Lucene search

K
redhatcveRedhat.comRH:CVE-2020-11086
HistoryJun 04, 2020 - 6:22 p.m.

CVE-2020-11086

2020-06-0418:22:04
redhat.com
access.redhat.com
8

0.003 Low

EPSS

Percentile

68.3%

In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_ntlm_v2_client_challenge that reads up to 28 bytes out-of-bound to an internal structure. This has been fixed in 2.1.0.

Mitigation

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.