PT-2026-29135 · Freerdp+1 · Freerdp+1

Calvinytt

Publicado

2026-01-01

Atualizado

2026-06-15

CVE-2026-33982

CVSS v2.0

9.4

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:N/A:C

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.24.2

Description FreeRDP is a free implementation of the Remote Desktop Protocol. Versions prior to 3.24.2 contain a heap-buffer-overflow READ vulnerability. This issue occurs due to a 24-byte buffer overflow before allocation within the winpr aligned offset recalloc() function. The issue has been addressed in version 3.24.2.

Recommendations Update to version 3.24.2 or later.

Exploit

Correção

DoS

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125

Identificadores relacionados

ALSA-2026:16014

BDU:2026-04668

CVE-2026-33982

GHSA-8JM9-2925-G4V2

OPENSUSE-SU-2026:10633-1

OPENSUSE-SU-2026:20657-1

SUSE-SU-2026:21436-1

Produtos afetados

Freerdp

Red Os

PT-2026-29135 · Freerdp+1 · Freerdp+1

CVE-2026-33982

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 48