CVE-2026-23534

HIGH 7.6

FreeRDP has heap-buffer-overflow in clear_decompress_bands_data

CVSS Score

7.6

EPSS Score

0.0%

EPSS Percentile

0th

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the ClearCodec bands decode path when crafted band coordinates allow writes past the end of the destination surface buffer. A malicious server can trigger a client‑side heap buffer overflow, causing a crash (DoS) and potential heap corruption with code‑execution risk depending on allocator behavior and surrounding heap layout. Version 3.21.0 contains a patch for the issue.

CWE	CWE-122
Vendor	freerdp
Product	freerdp
Published	Jan 19, 2026
Last Updated	Jun 30, 2026

Stay Ahead of the Next One

Get instant alerts for freerdp freerdp

Be the first to know when new high vulnerabilities affecting freerdp freerdp are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

FreeRDP / FreeRDP

< 3.21.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗