VDB

CISA-2026-22853

CISA-2026-22853 PUBLISHED CVSS 6.8 MEDIUM

Reported by GitHub_M · Published January 14, 2026

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR’s NDR array reader does not perform bounds checking on the on‑wire element count and can write past the heap buffer allocated from hints, causing a heap buffer overflow in ndr_read_uint8Array. This vulnerability is fixed in 3.20.1.

Risk Scores

CVSS 4.0
6.8
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Affected Products

VendorProductVersions
FreeRDPFreeRDP< 3.20.1
FreeRDPFreeRDP< 3.20.1, < 3.20.1

Timeline

  • Jan 14, 2026 CVE Published
  • Feb 26, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›