freerdp
177 tracked vulnerabilities.
CVE-2026-24677
CRITICAL
FreeRDP <3.22.0 - Memory Corruption
Feb 09, 2026
CVSS 9.1
EPSS 0.00
CVE-2026-24676
HIGH
FreeRDP < 3.22.0 - Use-After-Free in AUDIN Format Renegotiation
Feb 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-24675
HIGH
FreeRDP < 3.22.0 - Use-After-Free in urb_select_interface
Feb 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-24491
HIGH
FreeRDP < 3.22.0 - Use-After-Free via Video Timer Notification
Feb 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-23948
HIGH
FreeRDP < 3.22.0 - Denial of Service via Malformed LogonInfoV2 PDU
Feb 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-23884
CRITICAL
FreeRDP < 3.21.0 - Use-After-Free in Offscreen Bitmap Deletion
Jan 19, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-23883
CRITICAL
FreeRDP < 3.21.0 - Use-After-Free in xf_Pointer_New
Jan 19, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-23732
HIGH
FreeRDP < 3.21.0 - Heap-based Buffer Overflow via FastGlyph Parsing
Jan 19, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-23534
CRITICAL
FreeRDP < 3.21.0 - Heap-based Buffer Overflow in ClearCodec Bands Decode Path
Jan 19, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-23533
CRITICAL
FreeRDP < 3.21.0 - Heap-based Buffer Overflow in RDPGFX ClearCodec Decode Path
Jan 19, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-23532
CRITICAL
FreeRDP < 3.21.0 - Heap-based Buffer Overflow in gdi_SurfaceToSurface
Jan 19, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-23531
CRITICAL
FreeRDP < 3.21.0 - Heap-based Buffer Overflow via RDPGFX Surface Updates
Jan 19, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-23530
CRITICAL
FreeRDP < 3.21.0 - Heap-based Buffer Overflow in Planar Bitmap Decompression
Jan 19, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-22859
CRITICAL
FreeRDP < 3.20.1 - Out-of-bounds Read in URBDRC Client
Jan 14, 2026
CVSS 9.1
EPSS 0.01
CVE-2026-22858
CRITICAL
FreeRDP < 3.20.1 - Out-of-bounds Read via Base64 Decoding
Jan 14, 2026
CVSS 9.1
EPSS 0.01
CVE-2026-22857
CRITICAL
FreeRDP < 3.20.1 - Use-After-Free in IRP Error Handling
Jan 14, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-22856
HIGH
FreeRDP < 3.20.1 - Use-After-Free via Serial Channel IRP Thread Race
Jan 14, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-22855
CRITICAL
FreeRDP < 3.20.1 - Out-of-bounds Read in Smartcard SetAttrib Path
Jan 14, 2026
CVSS 9.1
EPSS 0.01
CVE-2026-22854
CRITICAL
FreeRDP < 3.20.1 - Heap-based Buffer Overflow via Drive Read IRP Output Stream
Jan 14, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-22853
CRITICAL
FreeRDP < 3.20.1 - Heap Buffer Overflow in RDPEAR NDR Array Reader
Jan 14, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-22852
CRITICAL
FreeRDP < 3.20.1 - Heap Buffer Overflow via Audio Input Format List Processing
Jan 14, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-22851
MEDIUM
FreeRDP < 3.20.1 - Use-After-Free via RDPGFX ResetGraphics Handling
Jan 14, 2026
CVSS 5.9
EPSS 0.00
CVE-2025-68118
CRITICAL
FreeRDP < 3.20.0 - Out-of-bounds Read via Certificate Cache Filename Handling
Dec 17, 2025
CVSS 9.1
EPSS 0.00
CVE-2025-4478
MEDIUM
FreeRDP 3.0.0-3.15.9 - Denial of Service via Crafted RDP Packet
May 16, 2025
CVSS 6.5
EPSS 0.00
CVE-2024-32662
HIGH
FreeRDP < 3.5.1 - Out-of-bounds Read via WCHAR String Handling
Apr 23, 2024
CVSS 7.5
EPSS 0.01
Products
Quick Filters