Out-of-Bounds Heap Read in FreeRDP Remote Desktop Protocol Implementation
CVE-2026-57157

6.5MEDIUM

Key Information:

Vendor

Freerdp

Status
Vendor
CVE Published:
10 July 2026

What is CVE-2026-57157?

FreeRDP, an open-source implementation of the Remote Desktop Protocol, includes a vulnerability in its server implementations with the MS-RDPECAM camera device enumerator channel enabled. Prior to version 3.28.0, the application incorrectly handles attacker-supplied DeviceName and VirtualChannelName fields, allowing for a 1- to 2-byte out-of-bounds heap read. This results from the improper dereferencing of memory past the scanned boundaries, posing a risk to systems using earlier versions. An upgrade to version 3.28.0 or later is essential to mitigate this security risk.

Affected Version(s)

FreeRDP < 3.28.0

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.