Out-of-Bounds Heap Read in FreeRDP Remote Desktop Protocol Implementation
CVE-2026-57157
6.5MEDIUM
What is CVE-2026-57157?
FreeRDP, an open-source implementation of the Remote Desktop Protocol, includes a vulnerability in its server implementations with the MS-RDPECAM camera device enumerator channel enabled. Prior to version 3.28.0, the application incorrectly handles attacker-supplied DeviceName and VirtualChannelName fields, allowing for a 1- to 2-byte out-of-bounds heap read. This results from the improper dereferencing of memory past the scanned boundaries, posing a risk to systems using earlier versions. An upgrade to version 3.28.0 or later is essential to mitigate this security risk.
Affected Version(s)
FreeRDP < 3.28.0
