Vulnerabilities

CVE-2026-23534 - FreeRDP has heap-buffer-overflow in clear_decompress_bands_data

2026-01-19 0 views admin

CVE ID : CVE-2026-23534 Published : Jan. 19, 2026, 5:09 p.m. | 1 hour, 4 minutes ago Description : FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the ClearCodec bands decode path when crafted band coordinates allow writes past the end of the destination surface buffer. A malicious server can trigger a client‑side heap buffer overflow, causing a crash (DoS) and potential heap corruption with code‑execution risk depending on allocator behavior and surrounding heap layout. Version 3.21.0 contains a patch for the issue. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-23534

Published

Jan. 19, 2026

Impact: DoS

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-23534

CVE-2026-23534 - FreeRDP has heap-buffer-overflow in clear_decompress_bands_data

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2026-1161 - pbrong hrms recruitment.go UpdateRecruitmentById cross site scripting

CVE-2026-23533 - FreeRDP has heap-buffer-overflow in clear_decompress_residual_data

CVE-2026-23732 - FreeRDP has heap-buffer-overflow in Glyph_Alloc

CVE-2026-23522 - Lobe Chat has IDOR in Knowledge Base File Removal that Allows Cross User File De...

Trending

Tech: Go-legacy-winxp: Compile Golang 1.24 code for Windows XP

Tech: Data is the only moat

Tech: Pocket TTS: A high quality TTS that gives your CPU a voice

Tech: AWS European Sovereign Cloud

Tech: JuiceFS is a distributed POSIX file system built on top of Redis and S3