Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2022-24883 - log back

CVE-2022-24883 edited at 07 Jun 2022 20:26:19

Remote

-	Unknown
+	Remote

Type

-	Unknown
+	Authentication bypass

Description

+	freerpd servers using authentication against a SAM file with an invalid path configured might accept invalid credentials

References

+	https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-qxm3-v2r6-vmwf
+	https://github.com/FreeRDP/FreeRDP/commit/6f473b273a4b6f0cb6aca32b95e22fd0de88e144

Notes

+	nvd states: critical but gh sates high
+	gh actually states: moderate

CVE-2022-24883 created at 07 Jun 2022 19:54:29