Resource Exhaustion Vulnerability in FreeRDP <= 2.0.0

Resource Exhaustion Vulnerability in FreeRDP <= 2.0.0

CVE-2020-11018 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

In FreeRDP less than or equal to 2.0.0, a possible resource exhaustion vulnerability can be performed. Malicious clients could trigger out of bound reads causing memory allocation with random size. This has been fixed in 2.1.0.

Learn more about our Web Application Penetration Testing UK.