CVE-2026-23533Heap-based Buffer Overflow in Freerdp

CWE-122Heap-based Buffer Overflow9 documents6 sources
Severity
7.7HIGHNVD
EPSS
0.2%
top 63.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
FreerdpDebian Freerdp2Debian Freerdp3
Timeline
PublishedJan 19
Latest updateMar 18

Description

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the RDPGFX ClearCodec decode path when maliciously crafted residual data causes out-of-bounds writes during color output. A malicious server can trigger a client‑side heap buffer overflow, causing a crash (DoS) and potential heap corruption with code‑execution risk depending on allocator behavior and surrounding heap layout. Version 3.21.0 contains a patch for th

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages3 packages

NVDfreerdp/freerdp< 3.21.0
debiandebian/freerdp2< freerdp3 3.21.0+dfsg-1 (forky)
debiandebian/freerdp3< freerdp3 3.21.0+dfsg-1 (forky)

🔴Vulnerability Details

2
OSV
freerdp2 regression2026-02-08
OSV
CVE-2026-23533: FreeRDP is a free implementation of the Remote Desktop Protocol2026-01-19

📋Vendor Advisories

5
Ubuntu
FreeRDP vulnerabilities2026-03-18
Ubuntu
FreeRDP regression2026-02-08
Ubuntu
FreeRDP vulnerabilities2026-02-03
Red Hat
freerdp: FreeRDP: Heap buffer overflow leads to denial of service and potential code execution2026-01-19
Debian
CVE-2026-23533: freerdp2 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to versio...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23533 Impact, Exploitability, and Mitigation Steps | Wiz