Vulnerability Description
Apache Guacamole 1.1.0 and older may mishandle pointers involved inprocessing data received via RDP static virtual channels. If a userconnects to a malicious or compromised RDP server, a series ofspecially-crafted PDUs could result in memory corruption, possiblyallowing arbitrary code to be executed with the privileges of therunning guacd process.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Guacamole | <= 1.1.0 |
| Fedoraproject | Fedora | 32 |
| Debian | Debian Linux | 9.0 |
Related Weaknesses (CWE)
References
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44525Third Party Advisory
- https://lists.apache.org/thread.html/r1125f3044a0946d1e7e6f125a6170b58d413ebd4a9
- https://lists.apache.org/thread.html/r26fb170edebff842c74aacdb1333c1338f0e19e5ec
- https://lists.apache.org/thread.html/r90890afea72a9571d666820b2fe5942a0a5f86be40
- https://lists.apache.org/thread.html/rff824b38ebd2fddc726b816f0e509696b83b9f7897Mailing ListThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2020/11/msg00010.htmlMailing ListThird Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://research.checkpoint.com/2020/apache-guacamole-rce/Third Party Advisory
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44525Third Party Advisory
- https://lists.apache.org/thread.html/r1125f3044a0946d1e7e6f125a6170b58d413ebd4a9
- https://lists.apache.org/thread.html/r26fb170edebff842c74aacdb1333c1338f0e19e5ec
- https://lists.apache.org/thread.html/r90890afea72a9571d666820b2fe5942a0a5f86be40
- https://lists.apache.org/thread.html/rff824b38ebd2fddc726b816f0e509696b83b9f7897Mailing ListThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2020/11/msg00010.htmlMailing ListThird Party Advisory
FAQ
What is CVE-2020-9498?
CVE-2020-9498 is a vulnerability with a CVSS score of 6.7 (MEDIUM). Apache Guacamole 1.1.0 and older may mishandle pointers involved inprocessing data received via RDP static virtual channels. If a userconnects to a malicious or compromised RDP server, a series ofspec...
How severe is CVE-2020-9498?
CVE-2020-9498 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-9498?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Guacamole, Fedoraproject Fedora, Debian Debian Linux.