CVE-2018-8787

CVE-2018-8787

Vendor Check Point Software Technologies Ltd.
Product FreeRDP
Weakness CWE-680
Published November 29, 2018
Last update September 16, 2024

CVSS base score

What the vulnerability does

01Description

FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_Decompress() and results in a memory corruption and probably even a remote code execution.

Key dates

02Disclosure timeline

November 29, 2018 CVE published
September 16, 2024 Record updated