Medium severity5.9NVD Advisory· Published Mar 30, 2026· Updated Apr 1, 2026
CVE-2026-33985
CVE-2026-33985
Description
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memory is rendered to screen, potentially leaking sensitive data to the attacker. This issue has been patched in version 3.24.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11- osv-coords9 versionspkg:rpm/almalinux/freerdppkg:rpm/almalinux/freerdp-develpkg:rpm/almalinux/freerdp-libspkg:rpm/almalinux/freerdp-serverpkg:rpm/almalinux/libwinprpkg:rpm/almalinux/libwinpr-develpkg:rpm/opensuse/freerdp&distro=openSUSE%20Tumbleweedpkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0
< 2:3.10.3-5.el10_1.8+ 8 more
- (no CPE)range: < 2:3.10.3-5.el10_1.8
- (no CPE)range: < 2:3.10.3-5.el10_1.8
- (no CPE)range: < 2:3.10.3-5.el10_1.8
- (no CPE)range: < 2:3.10.3-5.el10_1.8
- (no CPE)range: < 2:3.10.3-5.el10_1.8
- (no CPE)range: < 2:3.10.3-5.el10_1.8
- (no CPE)range: < 3.24.2-1.1
- (no CPE)range: < 3.26.0-160000.1.1
- (no CPE)range: < 3.26.0-160000.1.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.