CVE-2026-29776

CVSS v3.1

3.1

Low

Vector

AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.24.0

Description FreeRDP is a free implementation of the Remote Desktop Protocol. An integer underflow exists in the update read cache bitmap order function within FreeRDP's Core Library.

Recommendations Update to version 3.24.0 or later.

Exploit

Fix

Resource Exhaustion

Integer Underflow

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-191CWE-190CWE-789

Related Identifiers

BDU:2026-04140

CVE-2026-29776

GHSA-C747-X4WF-CQRR

OESA-2026-1716

OPENSUSE-SU-2026:10408-1

OPENSUSE-SU-2026:20657-1

SUSE-SU-2026:1632-1

SUSE-SU-2026:1633-1

SUSE-SU-2026:1634-1

SUSE-SU-2026:1635-1

SUSE-SU-2026:1640-1

SUSE-SU-2026:21436-1

Affected Products

Freerdp

CVE-2026-29776

Weakness Enumeration

Related Identifiers

Affected Products

References · 40