VYPR
Unrated severityNVD Advisory· Published Apr 23, 2024· Updated Nov 3, 2025

FreeRDP zgfx_decompress out of memory vulnerability

CVE-2024-32660

Description

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

30

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.