CVE-2026-32105

Name of the Vulnerable Software and Affected Versions xrdp versions prior to 0.10.6

Description xrdp fails to implement verification for the Message Authentication Code (MAC) signature of encrypted RDP packets when the Classic RDP Security layer is used. Although signatures are generated by the sender, the receiving logic ignores the 8-byte integrity signature. This allows an unauthenticated attacker with man-in-the-middle (MITM) capabilities to modify encrypted traffic in transit without detection. This issue does not affect connections where the TLS security layer is enforced.

Recommendations Update to version 0.10.6. Configure xrdp.ini to enforce TLS security by setting security layer=tls to ensure end-to-end integrity.