FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-free occurs in irp_thread_func because the IRP is freed by irp->Complete() and then accessed again on the error path. This vulnerability is fixed in 3.20.1.
VulnCheck: FreeRDP is
Exploit
CVE-2026-22857
VulnCheck
Refer to CVE-2026-22857 NVD advisory