CVE-2022-41877

MEDIUM

FreeRDP <2.9.0 - Buffer Overflow

Title source: llm

Description

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing input length validation in `drive` channel. A malicious server can trick a FreeRDP based client to read out of bound data and send it back to the server. This issue has been addressed in version 2.9.0 and all users are advised to upgrade. Users unable to upgrade should not use the drive redirection channel - command line options `/drive`, `+drives` or `+home-drive`.

References (7)

[Patch, Third Party Advisory] https://github.com/FreeRDP/FreeRDP/commit/6655841cf2a00b764f855040aecb8803cfc5eaba

View Patch ZIP pw:eip

[Third Party Advisory] https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-pmv3-wpw4-pw5h

[Mailing List] https://lists.debian.org/debian-lts-announce/2025/02/msg00016.html

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDOTAOJBCZKREZJPT6VZ25GESI5T6RBG/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YGQN3OWQNHSMWKOF4D35PF5ASKNLC74B/

[Mailing List] https://lists.debian.org/debian-lts-announce/2023/11/msg00010.html

[Third Party Advisory] https://security.gentoo.org/glsa/202401-16

Scores

CVSS v3 4.6

EPSS 0.0018

EPSS Percentile 38.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-119 CWE-1284

Status published

Products (3)

fedoraproject/fedora 36

fedoraproject/fedora 37

freerdp/freerdp < 2.9.0

Published Nov 16, 2022

Tracked Since Feb 18, 2026