vulnerability

FreeBSD: VID-1f0421b1-8398-11ed-973d-002b67dfc673 (CVE-2022-39320): freerdp -- multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:M/Au:S/C:P/I:P/A:P)	Dec 24, 2022	Dec 25, 2022	Dec 10, 2025

Severity

CVSS

(AV:N/AC:M/Au:S/C:P/I:P/A:P)

Published

Dec 24, 2022

Added

Dec 25, 2022

Modified

Dec 10, 2025

Description

FreeRDP reports: GHSA-5w4j-mrrh-jjrm: Out of bound read in zgfx decoder. GHSA-99cm-4gw7-c8jh: Undefined behaviour in zgfx decoder. GHSA-387j-8j96-7q35: Division by zero in urbdrc channel. GHSA-mvxm-wfj2-5fvh: Missing length validation in urbdrc channel. GHSA-qfq2-82qr-7f4j: Heap buffer overflow in urbdrc channel. GHSA-c5xq-8v35-pffg: Missing path sanitation with `drive` channel. GHSA-pmv3-wpw4-pw5h: Missing input length validation in `drive` channel.

Solution

freebsd-upgrade-package-freerdp

References

CVE-2022-39320
https://attackerkb.com/topics/CVE-2022-39320
CWE-125

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today