9.1
CVE-2026-22859
- EPSS 0.76%
- Veröffentlicht 14.01.2026 17:57:37
- Zuletzt bearbeitet 30.06.2026 03:17:29
- Quelle security-advisories@github.com
- CVE-Watchlists
- Unerledigt
FreeRDP has a heap-buffer-overflow in urb_select_configuration
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, the URBDRC client does not perform bounds checking on server‑supplied MSUSB_INTERFACE_DESCRIPTOR values and uses them as indices in libusb_udev_complete_msconfig_setup, causing an out‑of‑bounds read. This vulnerability is fixed in 3.20.1.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.76% | 0.505 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.1 | 3.9 | 5.2 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
|
| security-advisories@github.com | 5.6 | 0 | 0 |
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
| 0b0ca135-0b70-47e7-9f44-1890c2a1c46c | 7.4 | 2.2 | 5.2 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H
|
CWE-125 Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
CWE-129 Improper Validation of Array Index
The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.
https://github.com/FreeRDP/FreeRDP/releases/tag/3.20.1
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-56f5-76qv-2r36
https://access.redhat.com/errata/RHSA-2026:19033
https://access.redhat.com/errata/RHSA-2026:3068
https://access.redhat.com/errata/RHSA-2026:4121
https://access.redhat.com/errata/RHSA-2026:3067
https://access.redhat.com/errata/RHSA-2026:3334
https://access.redhat.com/errata/RHSA-2026:3975
https://access.redhat.com/errata/RHSA-2026:4437
https://access.redhat.com/errata/RHSA-2026:4438
https://access.redhat.com/errata/RHSA-2026:4439
https://access.redhat.com/errata/RHSA-2026:4440
https://access.redhat.com/errata/RHSA-2026:4446
https://access.redhat.com/errata/RHSA-2026:4471
https://access.redhat.com/errata/RHSA-2026:4489
https://access.redhat.com/errata/RHSA-2026:4433
https://access.redhat.com/security/cve/CVE-2026-22859
https://bugzilla.redhat.com/show_bug.cgi?id=2429653
https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-22859.json