Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

FreeRDP — Vulnerabilities & Security Advisories 142

Browse all 142 CVE security advisories affecting FreeRDP. AI-powered Chinese analysis, POCs, and references for each vulnerability.

FreeRDP is an open-source Remote Desktop Protocol client and server implementation designed to facilitate cross-platform remote desktop connectivity. Its widespread adoption in enterprise and personal environments has made it a frequent target for security researchers, resulting in a significant number of recorded Common Vulnerabilities and Exposures. Historically, the codebase has been susceptible to critical remote code execution flaws, often stemming from improper input validation within the RDP protocol parsing logic. These vulnerabilities frequently allow attackers to execute arbitrary commands or escalate privileges on affected systems without user interaction. While the project maintains an active development cycle to patch these issues, the sheer volume of past incidents highlights the complexity of implementing secure network protocols. Continuous monitoring and timely updates remain essential for mitigating risks associated with its extensive feature set and legacy code dependencies.

Top products by FreeRDP: FreeRDP
CVE IDTitleCVSSSeverityPublished
CVE-2026-22852 FreeRDP has a heap-buffer-overflow in audin_process_formats — FreeRDPCWE-787 9.1 -2026-01-14
CVE-2026-22851 FreeRDP RDPGFX ResetGraphics race leads to use-after-free in SDL client (sdl->primary) — FreeRDPCWE-362 8.1 -2026-01-14
CVE-2025-68118 Potential Heap Out-of-Bounds Read in freerdp_certificate_data_hash_ via Unsafe _snprintf Usage — FreeRDPCWE-125 7.5AIHighAI2025-12-17
CVE-2024-32662 FreeRDP rdp_redirection_read_base64_wchar out of bound read — FreeRDPCWE-125 7.5 High2024-04-23
CVE-2024-32661 FreeRDP rdp_write_logon_info_v1 NULL access — FreeRDPCWE-476 7.5 High2024-04-23
CVE-2024-32660 FreeRDP zgfx_decompress out of memory vulnerability — FreeRDPCWE-770 7.5 High2024-04-23
CVE-2024-32659 freerdp_image_copy out of bound read — FreeRDPCWE-125 9.8 Critical2024-04-23
CVE-2024-32658 FreeRDP ExtractRunLengthRegular* out of bound read — FreeRDPCWE-125 9.8 Critical2024-04-23
CVE-2024-32460 FreeRDP Out-Of-Bounds Read in interleaved_decompress — FreeRDPCWE-125 8.1 High2024-04-22
CVE-2024-32459 FreeRDP Out-Of-Bounds Read in ncrush_decompress — FreeRDPCWE-125 9.8 Critical2024-04-22
CVE-2024-32458 FreeRDP Out-Of-Bounds Read in planar_skip_plane_rle — FreeRDPCWE-125 9.8 Critical2024-04-22
CVE-2024-32041 FreeRDP OutOfBound Read in zgfx_decompress_segment — FreeRDPCWE-125 9.8 Critical2024-04-22
CVE-2024-32040 FreeRDP vulnerable to integer underflow in nsc_rle_decode — FreeRDPCWE-191 8.1 High2024-04-22
CVE-2024-32039 FreeRDP Integer overflow & OutOfBound Write in clear_decompress_residual_data — FreeRDPCWE-190 9.8 Critical2024-04-22
CVE-2024-22211 FreeRDP integer Overflow leading to Heap Overflow — FreeRDPCWE-190 3.7 Low2024-01-19
CVE-2023-40567 Out-Of-Bounds Write in FreeRDP — FreeRDPCWE-787 6.5 Medium2023-08-31
CVE-2023-40569 Out-Of-Bounds Write in FreeRDP — FreeRDPCWE-787 6.5 Medium2023-08-31
CVE-2023-40574 Out-Of-Bounds Write in FreeRDP — FreeRDPCWE-787 6.5 Medium2023-08-31
CVE-2023-40576 Out-Of-Bounds Read in FreeRDP — FreeRDPCWE-125 5.3 Medium2023-08-31
CVE-2023-40575 Out-Of-Bounds Read in FreeRDP — FreeRDPCWE-125 5.3 Medium2023-08-31
CVE-2023-40188 Out-Of-Bounds Read in FreeRDP — FreeRDPCWE-125 5.3 Medium2023-08-31
CVE-2023-40187 Use-After-Free in FreeRDP — FreeRDPCWE-416 7.3 High2023-08-31
CVE-2023-40186 IntegerOverflow leading to Out-Of-Bound Write Vulnerability in FreeRDP — FreeRDPCWE-787 6.5 Medium2023-08-31
CVE-2023-40181 Integer-Underflow leading to Out-Of-Bound Read in FreeRDP — FreeRDPCWE-125 5.3 Medium2023-08-31
CVE-2023-39356 Missing offset validation leading to Out-of-Bounds Read in FreeRDP — FreeRDPCWE-125 5.3 Medium2023-08-31
CVE-2023-39352 Invalid offset validation leading to Out Of Bound Write in FreeRDP — FreeRDPCWE-787 5.3 Medium2023-08-31
CVE-2023-39353 Missing offset validation leading to Out Of Bound Read in FreeRDP — FreeRDPCWE-125 5.3 Medium2023-08-31
CVE-2023-39351 FreeRDP Null Pointer Dereference leading denial of service — FreeRDPCWE-476 5.3 Medium2023-08-31
CVE-2023-39355 FreeRDP Use-After-Free in RDPGFX_CMDID_RESETGRAPHICS — FreeRDPCWE-416 7.0 High2023-08-31
CVE-2023-39354 FreeRDP Out-Of-Bounds Read in nsc_rle_decompress_data — FreeRDPCWE-125 5.9 Medium2023-08-31

This page lists every published CVE security advisory associated with FreeRDP. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.