Apache Guacamole 0.9.10 through 1.5.1 may continue to reference a freed RDP audio input buffer. Depending on timing, this may allow an attacker to execute arbitrary code with the privileges of the guacd process.
References
Link | Resource |
---|---|
https://lists.apache.org/thread/vgtvxb3w7mm84hx6v8dfc0onsoz05gb6 | Mailing List Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apache
Published: 2023-06-07T08:06:54.840Z
Updated: 2023-06-07T08:06:54.840Z
Reserved: 2023-04-12T20:55:56.105Z
Link: CVE-2023-30576
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-06-07T09:15:10.080
Modified: 2023-06-14T14:33:16.713
Link: CVE-2023-30576
JSON object: View
Redhat Information
No data.
CWE