Cyber Resilience

CVE-2024-32459

Critical

Published: 22 April 2024

Published
22 April 2024
Modified
03 November 2025
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.1062 93.5th percentile
Risk Priority 26 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-32459 is a critical-severity Out-of-bounds Read (CWE-125) vulnerability in Fedoraproject Fedora. Its CVSS base score is 9.8 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Client Execution (T1203); ranked in the top 6.5% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

Deeper analysis

FreeRDP, a free implementation of the Remote Desktop Protocol, is affected by an out-of-bounds read vulnerability (CWE-125) in both clients and servers running versions prior to 3.5.0 or 2.11.6. The flaw received a CVSS score of 9.8, reflecting network-accessible exploitation without authentication or user interaction.

An unauthenticated remote attacker can trigger the out-of-bounds read against vulnerable FreeRDP instances, potentially resulting in high impacts to confidentiality, integrity, and availability.

Official patches released in FreeRDP 3.5.0 and 2.11.6 resolve the issue, and project advisories state that no workarounds are available. Coordinated updates have also been issued through distribution channels such as Fedora.

EU & UK References

Vulnerability details

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. No known…

more

workarounds are available.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1203 Exploitation for Client Execution Execution
Adversaries may exploit software vulnerabilities in client applications to execute code.
T1210 Exploitation of Remote Services Lateral Movement
Adversaries may exploit remote services to gain unauthorized access to internal systems once inside of a network.
Why these techniques?

Out-of-bounds read in FreeRDP clients enables T1203 (Exploitation for Client Execution); in servers enables T1210 (Exploitation of Remote Services) via RDP protocol.

Affected Assets

freerdp
freerdp
≤ 2.11.6 · 3.0.0 — 3.5.0
fedoraproject
fedora
38, 39, 40

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References