Main Vulnerability Database Exploits ID:9845 - Exploit for Out-of-bounds read in FreeRDP - CVE-2024-32459

ID:9845 - Exploit for Out-of-bounds read in FreeRDP - CVE-2024-32459

Published: May 23, 2024

Vulnerability identifier: #VU88849

Vulnerability risk: Medium

CVE-ID: CVE-2024-32459

CWE-ID: CWE-125

Exploitation vector: Remote access

Vulnerable software:
FreeRDP

Link to public exploit:

https://github.com/absholi7ly/FreeRDP-Out-of-Bounds-Read-CVE-2024-32459-

Vulnerability description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in ncrush_decompress. A remote attacker can trigger an out-of-bounds read error and read contents of memory on the system.

Remediation

Install updates from vendor's website.

ID:9845 - Exploit for Out-of-bounds read in FreeRDP - CVE-2024-32459

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human