CVE-2026-33977

Published: Mar 31, 2026 Last Modified: Mar 31, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 6,9

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: active

Confidentiality: N/A

Integrity: N/A

Availability: N/A

Description

AI Translation Available

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a malicious RDP server can crash the FreeRDP client by sending audio data in IMA ADPCM format with an invalid initial step index value (>= 89). The unvalidated step index is read directly from the network and used to index into a 89-entry lookup table, triggering a WINPR_ASSERT() failure and process abort via SIGABRT. This affects any FreeRDP client that has audio redirection (RDPSND) enabled, which is the default configuration. This issue has been patched in version 3.24.2.

617

Reachable Assertion

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Availability

Potential Impacts:

Dos: Crash, Exit, Or Restart

Applicable Platforms

Languages: C, Java, Not Language-Specific, Rust

View CWE Details

https://github.com/FreeRDP/FreeRDP/commit/9be3f03d94a50892f…

https://github.com/FreeRDP/FreeRDP/commit/9be3f03d94a50892fd58a9f7dee72b2313c69…

https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA…

https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8f2g-3q27-6xm5

CVE-2026-33977

Description

Reachable Assertion

Common Consequences

Applicable Platforms

Iscriviti alla newsletter