CVE-2022-39282

RDP client: Read of uninitialized memory with parallel port redirection

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

FreeRDP is a free remote desktop protocol library and clients. FreeRDP based clients on unix systems using `/parallel` command line switch might read uninitialized data and send it to the server the client is currently connected to. FreeRDP based server implementations are not affected. Please upgrade to 2.8.1 where this issue is patched. If unable to upgrade, do not use parallel port redirection (`/parallel` command line switch) as a workaround.

FreeRDP es un protocolo de escritorio remoto libre para bibliotecas y clientes. Los clientes basados ??en FreeRDP en sistemas Unix que usan el interruptor de línea de comando `/parallel` pueden leer datos no inicializados y enviarlos al servidor al que el cliente está conectado actualmente. Las implementaciones de servidor basadas en FreeRDP no se ven afectadas. Actualice a 2.8.1 donde se solucionó este problema. Si no puede actualizar, no utilice la redirección de puerto paralelo (cambiador de línea de comando `/parallel`) como workaround.

A vulnerability was found in FreeRDP where clients on UNIX systems using /parallel command line switch might read uninitialized data and send it to the client's server. The vulnerability allows a remote attacker to gain access to sensitive information.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-09-02 CVE Reserved
2022-10-12 CVE Published
2024-05-04 EPSS Updated
2024-08-03 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-908: Use of Uninitialized Resource

CAPEC

References (9)

URL	Tag	Source
https://github.com/FreeRDP/FreeRDP/releases/tag/2.8.1	Release Notes
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-c45q-wcpg-mxjq	Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/11/msg00010.html	Mailing List

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HEWWYMGWIMD4RDCOGHWMZXUMBGZHC5NW	2023-11-17
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RLZCF7YHNC5BECDPEJNAZUYGNNM7NFME	2023-11-17
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDOTAOJBCZKREZJPT6VZ25GESI5T6RBG	2023-11-17
https://security.gentoo.org/glsa/202210-24	2023-11-17
https://access.redhat.com/security/cve/CVE-2022-39282	2023-05-16
https://bugzilla.redhat.com/show_bug.cgi?id=2134713	2023-05-16

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Freerdp Search vendor "Freerdp"		Freerdp Search vendor "Freerdp" for product "Freerdp"				< 2.8.1 Search vendor "Freerdp" for product "Freerdp" and version " < 2.8.1"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				35 Search vendor "Fedoraproject" for product "Fedora" and version "35"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				36 Search vendor "Fedoraproject" for product "Fedora" and version "36"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				37 Search vendor "Fedoraproject" for product "Fedora" and version "37"		-		Affected