Freerdp

Freerdp

122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2026-23884

Exploit
  • EPSS 0.11%
  • Veröffentlicht 19.01.2026 17:20:40
  • Zuletzt bearbeitet 28.01.2026 18:31:29

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, offscreen bitmap deletion leaves `gdi->drawing` pointing to freed memory, causing UAF when related update packets arrive. A malicious server can trigger a clien...

9.8

CVE-2026-23883

Exploit
  • EPSS 0.11%
  • Veröffentlicht 19.01.2026 17:15:55
  • Zuletzt bearbeitet 28.01.2026 18:35:31

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, `xf_Pointer_New` frees `cursorPixels` on failure, then `pointer_free` calls `xf_Pointer_Free` and frees it again, triggering ASan UAF. A malicious server can tr...

7.5

CVE-2026-23732

Exploit
  • EPSS 0.09%
  • Veröffentlicht 19.01.2026 17:12:57
  • Zuletzt bearbeitet 28.01.2026 18:38:37

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, FastGlyph parsing trusts `cbData`/remaining length and never validates against the minimum size implied by `cx/cy`. A malicious server can trigger a client‑side...

9.8

CVE-2026-23534

Exploit
  • EPSS 0.1%
  • Veröffentlicht 19.01.2026 17:09:55
  • Zuletzt bearbeitet 28.01.2026 18:44:11

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the ClearCodec bands decode path when crafted band coordinates allow writes past the end of the destination surface...

9.8

CVE-2026-23533

Exploit
  • EPSS 0.1%
  • Veröffentlicht 19.01.2026 17:07:18
  • Zuletzt bearbeitet 28.01.2026 18:46:17

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the RDPGFX ClearCodec decode path when maliciously crafted residual data causes out-of-bounds writes during color o...

9.8

CVE-2026-23532

Exploit
  • EPSS 0.09%
  • Veröffentlicht 19.01.2026 17:03:51
  • Zuletzt bearbeitet 28.01.2026 18:48:28

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the FreeRDP client’s `gdi_SurfaceToSurface` path due to a mismatch between destination rectangle clamping and the ...

9.8

CVE-2026-23531

Exploit
  • EPSS 0.09%
  • Veröffentlicht 19.01.2026 17:01:01
  • Zuletzt bearbeitet 28.01.2026 18:51:35

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, in ClearCodec, when `glyphData` is present, `clear_decompress` calls `freerdp_image_copy_no_overlap` without validating the destination rectangle, allowing an o...

9.8

CVE-2026-23530

Exploit
  • EPSS 0.1%
  • Veröffentlicht 19.01.2026 16:58:46
  • Zuletzt bearbeitet 28.01.2026 18:53:04

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,`freerdp_bitmap_decompress_planar` does not validate `nSrcWidth`/`nSrcHeight` against `planar->maxWidth`/`maxHeight` before RLE decode. A malicious server can tr...

9.1

CVE-2026-22859

Exploit
  • EPSS 0.06%
  • Veröffentlicht 14.01.2026 17:57:37
  • Zuletzt bearbeitet 20.01.2026 18:31:47

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, the URBDRC client does not perform bounds checking on server‑supplied MSUSB_INTERFACE_DESCRIPTOR values and uses them as indices in libusb_udev_complete_msconfig_setup,...

9.1

CVE-2026-22858

Exploit
  • EPSS 0.06%
  • Veröffentlicht 14.01.2026 17:56:29
  • Zuletzt bearbeitet 20.01.2026 18:33:32

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, global-buffer-overflow was observed in FreeRDP's Base64 decoding path. The root cause appears to be implementation-defined char signedness: on Arm/AArch64 builds, plain...