PT-2026-29138 · Freerdp+2 · Freerdp+2

Calvinytt

Publicado

2026-01-01

Atualizado

2026-06-15

CVE-2026-33985

CVSS v2.0

8.5

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:N/A:P

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.24.2

Description FreeRDP is a free implementation of the Remote Desktop Protocol. Versions prior to 3.24.2 are susceptible to a flaw where pixel data from adjacent heap memory is rendered to the screen, potentially exposing sensitive data to an attacker.

Recommendations Update to version 3.24.2 or later.

Exploit

Correção

DoS

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-131CWE-125

Identificadores relacionados

ALSA-2026:16014

ALSA-2026:16019

ALSA-2026:16482

BDU:2026-04672

CVE-2026-33985

GHSA-X6GR-8P7H-5H85

OESA-2026-2439

OESA-2026-2440

OESA-2026-2441

OESA-2026-2442

OPENSUSE-SU-2026:10633-1

OPENSUSE-SU-2026:20657-1

SUSE-SU-2026:21436-1

Produtos afetados

Freerdp

Red Os

Rocky Linux

PT-2026-29138 · Freerdp+2 · Freerdp+2

CVE-2026-33985

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 78