Security Advisory

CVE-2025-4478

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-16 14:22:17

Last updated 2026-06-25 04:53:44

Assigner redhat

State PUBLISHED

Description

A flaw was found in the FreeRDP used by Anacondas remote install feature, where a crafted RDP packet could trigger a segmentation fault. This issue causes the service to crash and remain defunct, resulting in a denial of service. It occurs pre-boot and is likely due to a NULL pointer dereference. Rebooting is required to recover the system.

← Browse all CVEs View on cve.org ↗