Stack-Based Buffer Overflow in xrdp Open Source RDP Server
CVE-2025-68670

9.1CRITICAL

Key Information:

Vendor

Neutrinolabs

Status
Xrdp
Vendor
CVE Published:
27 January 2026

What is CVE-2025-68670?

The xrdp open source RDP server is prone to an unauthenticated stack-based buffer overflow vulnerability. This issue arises due to inadequate bounds checking when handling user domain information during connection initialization. An attacker could exploit this weakness to execute arbitrary code on the affected system by manipulating the stack buffer and altering the return address, potentially steering the execution flow. While the risk is mitigated if the xrdp binary is compiled with stack canary protection, this should not be solely relied upon in production environments. Users are recommended to upgrade to xrdp version 0.10.5 or higher to obtain a security patch. For detailed information, refer to the official advisories and release notes.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

xrdp < 0.10.5

References

https://github.com/neutrinolabs/xrdp/security/advisories/...
x_refsource_CONFIRM
https://github.com/neutrinolabs/xrdp/commit/488c8c7d4d189...
x_refsource_MISC
https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.5
x_refsource_MISC

CVSS V3.1

Score:
9.1
Severity:
CRITICAL
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.