Known Vulnerabilities for products from FreeRDP

Listed below are 20 of the newest known vulnerabilities associated with the vendor "FreeRDP".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2026-33995	FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a double-free vulnerability in kerb...	Not Provided	2026-03-30	2026-04-01
CVE-2026-33987	FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in persistent_cache_read_entry_v3()...	Not Provided	2026-03-30	2026-04-01
CVE-2026-33986		Not Provided	2026-03-30	2026-04-01
CVE-2026-33985	FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memor...	Not Provided	2026-03-30	2026-04-01
CVE-2026-33984	FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in resize_vbar_entry() in libfreerd...	Not Provided	2026-03-30	2026-04-01
CVE-2026-33983		Not Provided	2026-03-30	2026-03-31
CVE-2026-33982	FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, there is a heap-buffer-overflow REA...	Not Provided	2026-03-30	2026-04-01
CVE-2026-33977	FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a malicious RDP server can crash th...	Not Provided	2026-03-30	2026-04-01
CVE-2026-33952	FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, an unvalidated auth_length field re...	Not Provided	2026-03-30	2026-04-01
CVE-2022-24883	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	9.8 - CRITICAL	2022-04-26	2023-11-17
CVE-2022-24882	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	7.5 - HIGH	2022-04-26	2023-11-07
CVE-2021-41160	FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected version...	8.8 - HIGH	2021-10-21	2023-11-17
CVE-2021-41159	FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. All FreeRDP clients...	8.8 - HIGH	2021-10-21	2023-11-07
CVE-2021-37595	In FreeRDP before 2.4.0 on Windows, wf_cliprdr_server_file_contents_request in client/Windows/wf_cliprdr.c has missing input ...	9.8 - CRITICAL	2021-07-30	2021-08-09
CVE-2021-37594	In FreeRDP before 2.4.0 on Windows, wf_cliprdr_server_file_contents_request in client/Windows/wf_cliprdr.c has missing input ...	9.8 - CRITICAL	2021-07-30	2021-08-09
CVE-2020-15103	In FreeRDP less than or equal to 2.1.2, an integer overflow exists due to missing input sanitation in rdpegfx channel. All Fr...	3.5 - LOW	2020-07-27	2023-11-07
CVE-2020-13398	An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) write vulnerability has been detected in crypto_rsa_c...	8.3 - HIGH	2020-05-22	2023-10-24
CVE-2020-13397	An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has been detected in security_fips...	5.5 - MEDIUM	2020-05-22	2023-10-24
CVE-2020-13396	An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has been detected in ntlm_read_Cha...	7.1 - HIGH	2020-05-22	2023-10-24
CVE-2020-11526	libfreerdp/core/update.c in FreeRDP versions > 1.1 through 2.0.0-rc4 has an Out-of-bounds Read.	2.2 - LOW	2020-05-15	2022-04-26

Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from FreeRDP

Type	Vendor	Product	Version
Application	Freerdp	Freerdp	1.0.0