โ† ุงู„ุนูˆุฏุฉ ู„ู„ุฌุฏูˆู„
CVE-2026-22853
CVE-2026-22853 โ€” VulnCheck: FreeRDP is a free implementation of the Remote Desktop Protocol. Prior
๐Ÿ“… 2026-01-14
๐Ÿ”ด Critical ๐Ÿ”ฅ No VulnCheck Vulnerability Windows CVSS 9.8

๐Ÿ“‹ ุงู„ูˆุตู ุงู„ูƒุงู…ู„

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEARโ€™s NDR array reader does not perform bounds checking on the onโ€‘wire element count and can write past the heap buffer allocated from hints, causing a heap buffer overflow in ndr_read_uint8Array. This vulnerability is fixed in 3.20.1.

๐Ÿ’ป ุงู„ุฃู†ุธู…ุฉ ุงู„ู…ุชุฃุซุฑุฉ

VulnCheck: FreeRDP is

โš ๏ธ ู†ูˆุน ุงู„ุชู‡ุฏูŠุฏ

Vulnerability

๐Ÿ”— CVE ID

CVE-2026-22853

๐Ÿ“ก ุงู„ู…ุตุฏุฑ

VulnCheck

โœ… ุงู„ุญู„ูˆู„ ูˆุงู„ุชุฎููŠู

Refer to CVE-2026-22853 NVD advisory

๐Ÿ”— ุงู„ู…ุตุฏุฑ ุงู„ุฃุตู„ูŠ โ† ๐Ÿ“˜ NVD โ† โšก CISA KEV โ†