Remote Desktop Protocol Vulnerability in FreeRDP by FreeRDP
CVE-2026-44422

7.5HIGH

Key Information:

Vendor: Freerdp
Status: Freerdp
Vendor: CVE Published:; 29 May 2026

What is CVE-2026-44422?

FreeRDP, a widely used open-source implementation of the Remote Desktop Protocol, contains a significant vulnerability in its RDPEAR NDR parser prior to version 3.26.0. This flaw allows improper handling of the non-null NDR pointer reference IDs for multiple logical pointer fields without adequate tracking of expected NDR types or ownership. Consequently, the parser may incorrectly assign the same heap object to multiple output fields when the same reference ID is reused. Subsequently, when the generic destructor attempts to free these pointers, it can lead to a triggering condition by a malicious server, resulting in a heap use-after-free or double-free scenario during the RDPEAR authentication-redirection process. Users are advised to upgrade to version 3.26.0 or later to mitigate this vulnerability effectively.

Affected Version(s)

FreeRDP < 3.26.0

References

https://github.com/FreeRDP/FreeRDP/security/advisories/GH...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 29, 2026
Vulnerability Reserved
May 6, 2026

CVE-2026-44422 Data

JSON

Freerdp

What is CVE-2026-44422?

Affected Version(s)

References

CVSS V3.1

Timeline