CVE-2026-29776 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	3.1 LOW	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L

Base Score

CVSS 3.x

EPSS Score

Percentile: 19%

Affected Products (NVD)

Vendor	Product	Version
freerdp	freerdp	𝑥 < 3.24.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

freerdp2

bookworm	no-dsa
bullseye	vulnerable
bullseye (security)	vulnerable

freerdp3

forky	3.26.0+dfsg-1 fixed
sid	3.26.0+dfsg-1 fixed
trixie	3.15.0+dfsg-2.1+deb13u3 fixed

openSUSE / SLES Releases

openSUSE Product

Release

freerdp

suse enterprise desktop 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise sap 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise server 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise workstation 15 SP7	3.10.3-150700.3.14.1 fixed

freerdp-devel

suse enterprise desktop 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise sap 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise server 12 SP5	2.1.2-12.68.1 fixed
suse enterprise server 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise workstation 15 SP7	3.10.3-150700.3.14.1 fixed

freerdp-proxy

suse enterprise desktop 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise sap 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise server 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise workstation 15 SP7	3.10.3-150700.3.14.1 fixed

freerdp-proxy-plugins

suse enterprise desktop 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise sap 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise server 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise workstation 15 SP7	3.10.3-150700.3.14.1 fixed

freerdp-sdl

suse enterprise desktop 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise sap 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise server 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise workstation 15 SP7	3.10.3-150700.3.14.1 fixed

freerdp-server

suse enterprise desktop 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise sap 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise server 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise workstation 15 SP7	3.10.3-150700.3.14.1 fixed

freerdp2

suse enterprise desktop 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise sap 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise server 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise workstation 15 SP7	2.11.7-150700.3.22.1 fixed

freerdp2-devel

suse enterprise desktop 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise sap 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise server 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise workstation 15 SP7	2.11.7-150700.3.22.1 fixed

freerdp2-proxy

suse enterprise desktop 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise sap 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise server 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise workstation 15 SP7	2.11.7-150700.3.22.1 fixed

freerdp2-server

suse enterprise desktop 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise sap 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise server 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise workstation 15 SP7	2.11.7-150700.3.22.1 fixed

libfreerdp-server-proxy3-3

suse enterprise desktop 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise sap 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise server 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise workstation 15 SP7	3.10.3-150700.3.14.1 fixed

libfreerdp2-2

suse enterprise desktop 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise sap 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise server 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise workstation 15 SP7	2.11.7-150700.3.22.1 fixed

libfreerdp3-3

suse enterprise desktop 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise sap 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise server 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise workstation 15 SP7	3.10.3-150700.3.14.1 fixed

librdtk0-0

suse enterprise desktop 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise sap 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise server 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise workstation 15 SP7	3.10.3-150700.3.14.1 fixed

libwinpr2-2

suse enterprise desktop 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise sap 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise server 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise workstation 15 SP7	2.11.7-150700.3.22.1 fixed

libwinpr3-3

suse enterprise desktop 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise sap 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise server 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise workstation 15 SP7	3.10.3-150700.3.14.1 fixed

winpr-devel

suse enterprise desktop 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise sap 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise server 15 SP7	3.10.3-150700.3.14.1 fixed
suse enterprise workstation 15 SP7	3.10.3-150700.3.14.1 fixed

winpr2-devel

suse enterprise desktop 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise sap 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise server 12 SP5	2.1.2-12.68.1 fixed
suse enterprise server 15 SP7	2.11.7-150700.3.22.1 fixed
suse enterprise workstation 15 SP7	2.11.7-150700.3.22.1 fixed

Amazon Linux Releases

Amazon Package

Release

freerdp

Amazon Linux 2	2:2.11.7-1.amzn2.0.9 fixed
Amazon Linux 2023	2:3.6.3-1.amzn2023.0.8 fixed

freerdp-debuginfo

Amazon Linux 2	2:2.11.7-1.amzn2.0.9 fixed
Amazon Linux 2023	2:3.6.3-1.amzn2023.0.8 fixed

freerdp-debugsource

Amazon Linux 2023

2:3.6.3-1.amzn2023.0.8

fixed

freerdp-devel

Amazon Linux 2	2:2.11.7-1.amzn2.0.9 fixed
Amazon Linux 2023	2:3.6.3-1.amzn2023.0.8 fixed

freerdp-libs

Amazon Linux 2	2:2.11.7-1.amzn2.0.9 fixed
Amazon Linux 2023	2:3.6.3-1.amzn2023.0.8 fixed

freerdp-libs-debuginfo

Amazon Linux 2023

2:3.6.3-1.amzn2023.0.8

fixed

freerdp-server

Amazon Linux 2023

2:3.6.3-1.amzn2023.0.8

fixed

freerdp-server-debuginfo

Amazon Linux 2023

2:3.6.3-1.amzn2023.0.8

fixed

libwinpr

Amazon Linux 2	2:2.11.7-1.amzn2.0.9 fixed
Amazon Linux 2023	2:3.6.3-1.amzn2023.0.8 fixed

libwinpr-debuginfo

Amazon Linux 2023

2:3.6.3-1.amzn2023.0.8

fixed

libwinpr-devel

Amazon Linux 2	2:2.11.7-1.amzn2.0.9 fixed
Amazon Linux 2023	2:3.6.3-1.amzn2023.0.8 fixed

Common Weakness Enumeration

CWE-190 - Integer Overflow or Wraparound
The software performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.

References

https://github.com/FreeRDP/FreeRDP/commit/a9e0abf2eac8c2e370fa155bf1abb9d044c0ca8a

https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-c747-x4wf-cqrr