CVE-2022-24883 log
| Source |
|
| Severity | Unknown |
| Remote | Yes |
| Type | Authentication bypass |
| Description | freerpd servers using authentication against a SAM file with an invalid path configured might accept invalid credentials |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2756 | freerdp | 2:2.6.1-3 | 2:2.7.0-1 | Critical | Fixed |
| References |
|---|
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-qxm3-v2r6-vmwf https://github.com/FreeRDP/FreeRDP/commit/6f473b273a4b6f0cb6aca32b95e22fd0de88e144 |
| Notes |
|---|
nvd states: critical but gh sates high gh actually states: moderate |