Description
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memory is rendered to screen, potentially leaking sensitive data to the attacker. This issue has been patched in version 3.24.2.
Published: 2026-03-30
Score: 5.9 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Information Disclosure via Heap OOB Read
Action: Update to 3.24.2
AI Analysis

Impact

A heap out‑of‑bounds read in FreeRDP’s ClearCodec glyph cache desynchronization allows an attacker to read arbitrary neighboring heap memory and render that data to the screen. The consequence is that sensitive information may be exposed to the attacker through the display. This type of weakness matches known CWE‑125 and CWE‑131 conditions.

Affected Systems

The flaw exists in all FreeRDP releases prior to version 3.24.2. Users running an older instance of the Open‑Source Remote Desktop Protocol client are affected.

Risk and Exploitability

The vulnerability is assigned a CVSS score of 5.9, reflecting moderate severity. No EPSS score is currently available and the issue is not listed in the CISA KEV catalog. Exploitation would require the attacker to establish an RDP session that triggers the glyph cache rendering path; once engaged, the attacker can view arbitrary data that may have been leaked, representing a moderate risk to confidentiality in exposed environments.

Generated by OpenCVE AI on March 31, 2026 at 05:58 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the vendor patch to upgrade to FreeRDP 3.24.2 or later.
  • Verify that the ClearCodec glyph cache count desynchronization issue is fixed by checking the patched source commit c49d1ad or the released version.
  • If upgrade is not immediately possible, limit RDP exposure and enforce strict access control to mitigate indirect disclosure risks.
  • Review any custom configurations and ensure no older builds are in use.

Generated by OpenCVE AI on March 31, 2026 at 05:58 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Apr 2026 02:15:00 +0000

Type Values Removed Values Added
First Time appeared Freerdp
Freerdp freerdp
Vendors & Products Freerdp
Freerdp freerdp
References
Metrics threat_severity

None

 threat_severity

Moderate

Tue, 31 Mar 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 31 Mar 2026 03:00:00 +0000

Type Values Removed Values Added
Description FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memory is rendered to screen, potentially leaking sensitive data to the attacker. This issue has been patched in version 3.24.2.
Title FreeRDP: ClearCodec Glyph Cache Count Desync - Heap OOB Read
Weaknesses CWE-125
CWE-131
References
Metrics cvssV3_1

{'score': 5.9, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:L'}

Subscriptions

Freerdp Freerdp
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-03-31T18:53:29.979Z

Reserved: 2026-03-24T22:20:06.211Z

Link: CVE-2026-33985

cve-icon Vulnrichment

Updated: 2026-03-31T18:50:33.418Z

cve-icon NVD

Status : Received

Published: 2026-03-30T22:16:19.720

Modified: 2026-03-30T22:16:19.720

Link: CVE-2026-33985

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-03-30T21:43:13Z

Links: CVE-2026-33985 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-03-31T20:39:55Z

Weaknesses