CNNVD-202602-1317 Information

CNNVD ID

CNNVD-202602-1317

Related CVE

CVE-2026-24682

• CNNVD Published: 2026-02-09

Description (Chinese)

FreeRDP是FreeRDP团队的一款开源的远程桌面协议（RDP）的实现。 FreeRDP 3.22.0之前版本存在安全漏洞，该漏洞源于audin_server_recv_formats在解析失败时释放错误数量的音频格式，可能导致越界访问。

Description (English)

FreeRDP is an open-source remote desktop protocol (RDP) for the FreeRDP team. There was a security loophole in the pre-FreeRDP 3.22.0 version, which originated in adin server recv formats that released the wrong amount of audio when the resolution failed and could lead to cross-border access.

Vulnerability Type

其他

Affected Vendor

FreeRDP

Published

2026-02-09

Last Modified

2026-02-24

References

https://github.com/FreeRDP/FreeRDP/commit/1c5c74223179d425a1ce6dbbb6a3dd2a958b7aee https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vcw2-pqgw-mx6g

Patch

https://github.com/FreeRDP/FreeRDP/releases