CVE-2026-32107
published 2026-04-17CVE-2026-32107: xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did not properly handle an error during the privilege drop…
PriorityP349high8.8CVSS 3.1
AVLACLPRLUINSCCHIHAH
EPSS
0.16%
5.4th percentile
xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did not properly handle an error during the privilege drop process. This improper privilege management could allow an authenticated local attacker to escalate privileges to root and execute arbitrary code on the system. An additional exploit would be needed to facilitate this. This issue has been fixed in version 0.10.6.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| neutrinolabs | xrdp | < 0.10.6 | 0.10.6 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
vendor_redhat8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
xrdp: xrdp: Privilege Escalation via improper privilege management
vendor_redhat·2026-04-17·CVSS 8.8
CVE-2026-32107 [HIGH] CWE-273 xrdp: xrdp: Privilege Escalation via improper privilege management
xrdp: xrdp: Privilege Escalation via improper privilege management
A flaw was found in xrdp, an open source Remote Desktop Protocol (RDP) server. The session execution component did not properly handle an error during the privilege drop process. This improper privilege management could allow an authenticated local attacker to escalate privileges to root and execute arbitrary code on the system.
Statement: This vulnerability doesn't affect any supported Red Hat products.
VulDB
neutrinolabs xrdp up to 0.10.5 dropped privileges (GHSA-p5m6-7m43-pjv9)
vuldb·2026-04-17·CVSS 8.8
CVE-2026-32107 [HIGH] neutrinolabs xrdp up to 0.10.5 dropped privileges (GHSA-p5m6-7m43-pjv9)
A vulnerability marked as critical has been reported in neutrinolabs xrdp up to 0.10.5. This impacts an unknown function. The manipulation leads to improper check for dropped privileges.
This vulnerability is listed as CVE-2026-32107. The attack must be carried out locally. There is no available exploit.
It is suggested to upgrade the affected component.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2026-32107 xrdp: xrdp: Privilege Escalation via improper privilege management
bugzilla·2026-04-17·CVSS 8.8
CVE-2026-32107 [HIGH] CVE-2026-32107 xrdp: xrdp: Privilege Escalation via improper privilege management
CVE-2026-32107 xrdp: xrdp: Privilege Escalation via improper privilege management
xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did not properly handle an error during the privilege drop process. This improper privilege management could allow an authenticated local attacker to escalate privileges to root and execute arbitrary code on the system. An additional exploit would be needed to facilitate this. This issue has been fixed in version 0.10.6.
Bugzilla
CVE-2026-32107 xrdp: xrdp: Privilege Escalation via improper privilege management [fedora-all]
bugzilla·2026-04-17·CVSS 8.8
CVE-2026-32107 [HIGH] CVE-2026-32107 xrdp: xrdp: Privilege Escalation via improper privilege management [fedora-all]
CVE-2026-32107 xrdp: xrdp: Privilege Escalation via improper privilege management [fedora-all]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
FEDORA-EPEL-2026-ff046d13ab (xrdp-0.10.6-1.el9) has been submitted as an update to Fedora EPEL 9.
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-ff046d13ab
---
FEDORA-2026-ad9e109ad8 (xrdp-0.10.6-1.fc44) has been submitted as an update to Fedora 44.
https://bodhi.fedoraproject.org/updates/FEDORA-2026-ad9e109ad8
---
FEDORA-EPEL-2026-239e52fdeb (xrdp-0.10.6-1.el8) has been submitted as an update to Fedora EPEL 8.
https://bodhi.fedoraproject.org/updat
Bugzilla
CVE-2026-32107 xrdp: xrdp: Privilege Escalation via improper privilege management [epel-all]
bugzilla·2026-04-17·CVSS 8.8
CVE-2026-32107 [HIGH] CVE-2026-32107 xrdp: xrdp: Privilege Escalation via improper privilege management [epel-all]
CVE-2026-32107 xrdp: xrdp: Privilege Escalation via improper privilege management [epel-all]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
FEDORA-EPEL-2026-ff046d13ab (xrdp-0.10.6-1.el9) has been submitted as an update to Fedora EPEL 9.
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-ff046d13ab
---
FEDORA-2026-ad9e109ad8 (xrdp-0.10.6-1.fc44) has been submitted as an update to Fedora 44.
https://bodhi.fedoraproject.org/updates/FEDORA-2026-ad9e109ad8
---
FEDORA-EPEL-2026-239e52fdeb (xrdp-0.10.6-1.el8) has been submitted as an update to Fedora EPEL 8.
https://bodhi.fedoraproject.org/updates
2026-04-17
Published