In FreeRDP less than or equal to 2.0.0, when using a manipulated server with USB redirection enabled (nearly) arbitrary memory can be read and written due to integer overflows in length checks. This has been patched in 2.1.0.
NOTE: The following CVSS v3.0 metrics and score provided are preliminary and subject to review.
|Base Score:||6.8||Base Metrics:||AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:L|
|Access Vector:||Network||Attack Complexity:||Low|
|Privileges Required:||Low||User Interaction:||Required|
|Integrity Impact:||High||Availability Impact:||Low|
|Oracle Linux version 7 (freerdp)||ELSA-2020-4031||2020-10-06|
|Oracle Linux version 8 (freerdp)||ELSA-2020-4647||2020-11-10|
|Oracle Linux version 8 (vinagre)||ELSA-2020-4647||2020-11-10|
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team