freerdp

Top products

The 15 most recently published vulnerabilities affecting freerdp.

• CVE-2026-45700Heap-buffer-overflow write in planar bitmap decoder9.8May 29, 2026
• CVE-2026-44420FreeRDP cliprdr server heap-buffer-overflow via undersized capabilitySetLength in CB_CLIP_CAPS8.8May 29, 2026
• CVE-2026-44422FreeRDP RDPEAR NDR ref-id aliasing causes client-side UAF/double-free and type confusion7.5May 29, 2026
• CVE-2026-44421FreeRDP RDPGFX CacheToSurface heap-buffer-overflow via clamped-rectangle validation bypass8.8May 29, 2026
• CVE-2026-40033FreeRDP - Heap-buffer-overflow in gdi_CacheToSurface via rectangle validation bypass8.8May 26, 2026
• CVE-2026-40254FreeRDP: contains_dotdot() off-by-one allows drive channel path traversal via terminal ..4.2Apr 24, 2026
• CVE-2026-33995FreeRDP: Possible double free in kerberos_AcceptSecurityContext5.3Mar 30, 2026
• CVE-2026-33987FreeRDP: Persistent Cache bmpSize Desync - Heap OOB Write7.1Mar 30, 2026
• CVE-2026-33986FreeRDP: H.264 YUV Buffer Dimension Desync - Heap OOB Write7.5Mar 30, 2026
• CVE-2026-33985FreeRDP: ClearCodec Glyph Cache Count Desync - Heap OOB Read5.9Mar 30, 2026
• CVE-2026-33984FreeRDP: ClearCodec resize_vbar_entry() Heap OOB Write7.5Mar 30, 2026
• CVE-2026-33983FreeRDP: Progressive Codec Quant BYTE Underflow - UB + CPU DoS6.5Mar 30, 2026
• CVE-2026-33982FreeRDP: Persistent Cache Allocator Mismatch - Heap OOB Read7.1Mar 30, 2026
• CVE-2026-33952FreeRDP: DoS via WINPR_ASSERT in rts_read_auth_verifier_no_checks6.5Mar 30, 2026
• CVE-2026-33977FreeRDP: DoS via WINPR_ASSERT in IMA ADPCM audio decoder (dsp.c:331)6.5Mar 30, 2026