VDB
CVE-2013-4118
CVE-2013-4118
PUBLISHED
CVSS 7.5 HIGH
FreeRDP before 1.1.0-beta1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
EPSS 1.90% · 83.6th percentile
Risk Scores
CVSS v3.0
7.5
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
1.90%
83.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| freerdp | freerdp | 0 |
| n/a | n/a | * |
| opensuse | leap | 42.1 |
| opensuse | opensuse | 13.2 |
Timeline
- Oct 3, 2016 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 17, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Apr 1, 2023 EPSS Score
- May 24, 2023 EPSS Score
- Sep 6, 2023 EPSS Score
- Oct 28, 2023 EPSS Score
References
- [oss-security] 20130711 Re: CVE Request -- FreeRDP: Multiple security fixes in 1.1.0-beta1 version mailing-list
- [oss-security] 20130712 Re: CVE Request -- FreeRDP: Multiple security fixes in 1.1.0-beta1 version mailing-list
- openSUSE-SU-2016:2400 vendor-advisory
- openSUSE-SU-2016:2402 vendor-advisory
- 61072 vdb
- https://github.com/FreeRDP/FreeRDP/commit/7d58aac24fe20ffaad7bd9b40c9ddf457c1b06e7 url
- https://nvd.nist.gov/vuln/detail/CVE-2013-4118 advisory