CVE-2023-39351

medium

Published 2024-04-30 · Modified 2024-05-07

CVSS v3

—

CVSS v2

—

VIR risk

5.5

Description

Moderate: freerdp security update

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2024-2208.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236784

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236779

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236774

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236766

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236763

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236759

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236750

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236730

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236669

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236656

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236650

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2236606

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2023-39351.html

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2023-39351

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:2208

OS impact

OS	Version	Status	Fixed in
rhel	9	fixed
debian	bookworm	fixed	`2.11.7+dfsg1-6~deb12u1`
debian	bullseye	fixed	`2.3.0+dfsg1-2+deb11u2`
sles		affected

References

Verify integrity in audit chain (admin only). AS-IS.