freerdp

177 tracked vulnerabilities.

CVE-2026-29776 LOW
FreeRDP <3.24.0 - Memory Corruption
Mar 13, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-29775 MEDIUM
FreeRDP <3.24.0 - Memory Corruption
Mar 13, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-29774 MEDIUM
FreeRDP < 3.24.0 - Heap Buffer Overflow in AVC420 YUV-to-RGB Conversion
Mar 13, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-27951 MEDIUM
FreeRDP < 3.23.0 - Denial of Service via Stream_EnsureCapacity
Feb 25, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-27950 HIGH
FreeRDP < 3.23.0 - Use-After-Free in SDL2 Pointer Implementation
Feb 25, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-26986 HIGH
FreeRDP < 3.23.0 - Use-After-Free in xf_rail_window_common
Feb 25, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-27015 MEDIUM
FreeRDP < 3.23.0 - Denial of Service via Smartcard Read Size Alignment Bounds Check
Feb 25, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-26965 HIGH
FreeRDP <3.23.0 - Memory Corruption
Feb 25, 2026
CVSS 8.8
EPSS 0.01
CVE-2026-26955 HIGH
FreeRDP < 3.23.0 - Heap Buffer Overflow via GDI Surface Command ClearCodec
Feb 25, 2026
CVSS 8.8
EPSS 0.01
CVE-2026-26271 MEDIUM
FreeRDP < 3.23.0 - Buffer Over-read in TS_ICON_INFO Icon Data Processing
Feb 25, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-25997 CRITICAL
FreeRDP < 3.23.0 - Use-After-Free in Clipboard Format Handling
Feb 25, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-25959 CRITICAL
FreeRDP < 3.23.0 - Use-After-Free in Clipboard Data Handling
Feb 25, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-25955 CRITICAL
FreeRDP < 3.23.0 - Use-After-Free in xf_AppUpdateWindowFromSurface
Feb 25, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-25954 HIGH
FreeRDP < 3.23.0 - Use-After-Free in xf_rail_server_local_move_size
Feb 25, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-25953 CRITICAL
FreeRDP < 3.23.0 - Use-After-Free in xf_rail Window Handling
Feb 25, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-25952 CRITICAL
FreeRDP < 3.23.0 - Use-After-Free in xf_SetWindowMinMaxInfo
Feb 25, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-25942 HIGH
FreeRDP <3.23.0 - Memory Corruption
Feb 25, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-25941 MEDIUM
FreeRDP 2.0.0-2.11.7 - Out-of-bounds Read via RDPGFX WIRE_TO_SURFACE_2 PDU
Feb 25, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-24684 HIGH
FreeRDP < 3.22.0 - Use-After-Free in RDPSND Async Playback Thread
Feb 09, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-24683 HIGH
FreeRDP < 3.22.0 - Use-After-Free in ainput_send_input_event
Feb 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-24682 HIGH
FreeRDP < 3.22.0 - Heap-based Buffer Overflow in audin_server_recv_formats
Feb 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-24681 HIGH
FreeRDP < 3.22.0 - Use-After-Free in URBDRC Channel Callback
Feb 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-24680 HIGH
FreeRDP < 3.22.0 - Use-After-Free in sdl_Pointer_New
Feb 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-24679 CRITICAL
FreeRDP < 3.22.0 - Heap-based Buffer Overflow in URBDRC Client Interface Handling
Feb 09, 2026
CVSS 9.1
EPSS 0.00
CVE-2026-24678 HIGH
FreeRDP < 3.22.0 - Use-After-Free in ecam_channel_write
Feb 09, 2026
CVSS 7.5
EPSS 0.01