CVE-2023-39352 — MEDIUM (5.3)

Q: How severe is CVE-2023-39352?

CVE-2023-39352 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-39352?

Check the references section above for vendor advisories and patch information. Affected products include: Freerdp Freerdp, Debian Debian Linux, Fedoraproject Fedora.

Vulnerability Description

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an invalid offset validation leading to Out Of Bound Write. This can be triggered when the values `rect->left` and `rect->top` are exactly equal to `surface->width` and `surface->height`. eg. `rect->left` == `surface->width` && `rect->top` == `surface->height`. In practice this should cause a crash. This issue has been addressed in versions 2.11.0 and 3.0.0-beta3. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

LOW

Affected Products

Vendor	Product	Versions
Freerdp	Freerdp	< 2.11.0
Debian	Debian Linux	10.0
Fedoraproject	Fedora	37

Related Weaknesses (CWE)

CWE-787

References

https://github.com/FreeRDP/FreeRDP/blob/63a2f65618748c12f79ff7450d46c6e194f2db76Issue Tracking
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-whwr-qcf2-2mvjExploitVendor Advisory
https://lists.debian.org/debian-lts-announce/2023/10/msg00008.htmlMailing ListThird Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]Mailing List
https://lists.fedoraproject.org/archives/list/[email protected]Mailing List
https://lists.fedoraproject.org/archives/list/[email protected]Mailing List
https://security.gentoo.org/glsa/202401-16Third Party Advisory
https://github.com/FreeRDP/FreeRDP/blob/63a2f65618748c12f79ff7450d46c6e194f2db76Issue Tracking
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-whwr-qcf2-2mvjExploitVendor Advisory
https://lists.debian.org/debian-lts-announce/2023/10/msg00008.htmlMailing ListThird Party Advisory
https://lists.debian.org/debian-lts-announce/2025/02/msg00016.html
https://lists.fedoraproject.org/archives/list/[email protected]Mailing List
https://lists.fedoraproject.org/archives/list/[email protected]Mailing List
https://lists.fedoraproject.org/archives/list/[email protected]Mailing List
https://security.gentoo.org/glsa/202401-16Third Party Advisory

FAQ

What is CVE-2023-39352?

CVE-2023-39352 is a vulnerability with a CVSS score of 5.3 (MEDIUM). FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an invalid offset validation leading to Out Of Bound Write. T...

How severe is CVE-2023-39352?

CVE-2023-39352 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-39352?

Check the references section above for vendor advisories and patch information. Affected products include: Freerdp Freerdp, Debian Debian Linux, Fedoraproject Fedora.