Out-of-Bounds Read Vulnerability in FreeRDP Client by FreeRDP
CVE-2026-25941

4.3MEDIUM

Key Information:

Vendor: Freerdp
Status: Freerdp
Vendor: CVE Published:; 25 February 2026

What is CVE-2026-25941?

The FreeRDP client contains an out-of-bounds read vulnerability within its RDPGFX channel, affecting versions prior to 2.11.8 in the 2.x series and 3.23.0 in the 3.x series. This vulnerability allows malicious RDP servers to leverage crafted packets with a bitmapDataLength that exceeds the actual data length, potentially exposing uninitialized heap memory. Users connecting to compromised servers may experience data leaks or client crashes, highlighting the need for immediate updates to secure the application.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

FreeRDP >= 2.0.0, < 2.11.8 < 2.0.0, 2.11.8

FreeRDP >= 3.0.0, < 3.23.0 < 3.0.0, 3.23.0

References

https://github.com/FreeRDP/FreeRDP/security/advisories/GH...

x_refsource_CONFIRM

https://github.com/FreeRDP/FreeRDP/commit/2e3b77e28ac6a39...

x_refsource_MISC

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 25, 2026
Vulnerability Reserved
Feb 9, 2026

JSON

Freerdp