CVE-2023-39352

Name: CVE-2023-39352
Creator: NVD / NIST
Published: 2023-08-31T21:15:07.873+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

CRITICALCVSS 9.8/10EPSS 1.30%

Last modified Jun 17, 2026

CVE-2023-39352 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an invalid offset validation leading to Out Of Bound Write. EPSS estimates a 1.30% chance of exploitation in the next 30 days.

Description

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an invalid offset validation leading to Out Of Bound Write. This can be triggered when the values `rect->left` and `rect->top` are exactly equal to `surface->width` and `surface->height`. eg. `rect->left` == `surface->width` && `rect->top` == `surface->height`. In practice this should cause a crash. This issue has been addressed in versions 2.11.0 and 3.0.0-beta3. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Metrics

CVSS 3.1

9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

1.30%

66.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions	Update
Freerdp	Freerdp	< 2.11.0	—
Freerdp	Freerdp	3.0.0	Beta1
Debian	Debian Linux	10.0	—
Fedoraproject	Fedora	37	—
Fedoraproject	Fedora	38	—
Fedoraproject	Fedora	39	—

References

https://github.com/FreeRDP/FreeRDP/blob/63a2f65618748c12f79ff7450d46c6e194f2db76/libfreerdp/gdi/gfx.c#L1219-L1239Issue Tracking
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-whwr-qcf2-2mvjExploit, Vendor Advisory
https://lists.debian.org/debian-lts-announce/2023/10/msg00008.htmlMailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A6LLDAPEXRDJOM3PREDDD267SSNT77DP/Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IHMTGKCZXJPQOR5ZD2I4GPDNP2DKRXMF/Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OH2ATH2BKDNKCJAU4WPPXK4SHLE3UJUV/Mailing List
https://security.gentoo.org/glsa/202401-16Third Party Advisory
https://github.com/FreeRDP/FreeRDP/blob/63a2f65618748c12f79ff7450d46c6e194f2db76/libfreerdp/gdi/gfx.c#L1219-L1239Issue Tracking
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-whwr-qcf2-2mvjExploit, Vendor Advisory
https://lists.debian.org/debian-lts-announce/2023/10/msg00008.htmlMailing List, Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/02/msg00016.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A6LLDAPEXRDJOM3PREDDD267SSNT77DP/Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IHMTGKCZXJPQOR5ZD2I4GPDNP2DKRXMF/Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OH2ATH2BKDNKCJAU4WPPXK4SHLE3UJUV/Mailing List
https://security.gentoo.org/glsa/202401-16Third Party Advisory

Timeline

Published: Aug 31, 2023
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2023-39352?

How severe is CVE-2023-39352?

CVE-2023-39352 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 1.30% probability of exploitation in the next 30 days.

How do I fix CVE-2023-39352?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2023-39352?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST