CVE-2026-33985

Medium CVSS: 5.9

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memory is rendered to screen, potentially leaking sensitive data to the attacker. This issue has been patched in version 3.24.2.

Vendor

Freerdp

Product

Freerdp

CWE

CWE-125

Yayın Tarihi

2026-03-30 22:16:19

Güncelleme

2026-04-01 20:01:13

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-125 Freerdp MEDIUM Freerdp 2026

Referanslar

https://github.com/FreeRDP/FreeRDP/commit/c49d1ad43b8c7b32794d0250f2623c2dccd7ef25 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-x6gr-8p7h-5h85

Benzer Kayıtlar

High

CVE-2026-33987

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in persistent_cache_read_entry…

Medium

CVE-2026-33995

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a double-free vulnerability in…

Medium

CVE-2026-33977

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a malicious RDP server can cra…

High

CVE-2026-33982

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, there is a heap-buffer-overflo…

Medium

CVE-2026-33983

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, progressive_decompress_tile_up…

High

CVE-2026-33984

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in resize_vbar_entry() in libf…