AVG-2756 log
| Package | freerdp |
| Status | Fixed |
| Severity | Critical |
| Type | authentication bypass |
| Affected | 2:2.6.1-3 |
| Fixed | 2:2.7.0-1 |
| Current | 2:3.9.0-4 [extra] |
| Ticket | None |
| Created | Tue Jun 7 19:54:29 2022 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2022-24883 | Unknown | Yes | Authentication bypass | freerpd servers using authentication against a SAM file with an invalid path configured might accept invalid credentials |
| CVE-2022-24882 | Critical | Yes | Authentication bypass | freerdp server with NTLM authentication does not properly abort on empty password |