QwikSec

Security Database

CVE

CWE

Training

CVE-2021-41160

Published: Oct 21, 2021

Modified: Nov 3, 2025

PUBLISHED

CVSS v3.1

5.3

MEDIUM

Description

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions a malicious server might trigger out of bound writes in a connected client. Connections using GDI or SurfaceCommands to send graphics updates to the client might send `0` width/height or out of bound rectangles to trigger out of bound writes. With `0` width or heigth the memory allocation will be `0` but the missing bounds checks allow writing to the pointer at this (not allocated) region. This issue has been patched in FreeRDP 2.4.1.

Vendor	Product	Versions
FreeRDP	FreeRDP	affected `< 2.4.1`

Weaknesses (CWE)

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:N

Attack Vector

Local

Attack Complexity

High

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

None

Integrity

High

Availability

None

References

https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-7c9r-6r2q-93qg

FEDORA-2021-2c25f03d0b

vendor-advisory

FEDORA-2021-5d227916bc

vendor-advisory

FEDORA-2021-ac23d9e47f

vendor-advisory

vendor-advisory

[debian-lts-announce] 20231117 [SECURITY] [DLA 3654-1] freerdp2 security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.