CVE-2026-29776

Summary

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in update_read_cache_bitmap_order Function of FreeRDP's Core Library This vulnerability is fixed in 3.24.0.

Affected Software

VendorProductVersion RangeStatus
FreeRDPFreeRDP< 3.24.0affected

Weaknesses

  • CWE-190: CWE-190: Integer Overflow or Wraparound
  • CWE-191: CWE-191: Integer Underflow (Wrap or Wraparound)
  • CWE-400: CWE-400: Uncontrolled Resource Consumption
  • CWE-789: CWE-789: Memory Allocation with Excessive Size Value

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References