Main Vulnerability Database Vulnerabilities #VU126463

Improper Check for Dropped Privileges in xrdp - CVE-2026-32107

Published: April 17, 2026

Vulnerability identifier: #VU126463

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2026-32107

CWE-ID: CWE-273

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: neutrinolabs

Affected software:
xrdp

Detailed vulnerability description

The vulnerability allows a local user to escalate privileges to root and execute arbitrary code.

The vulnerability exists due to improper check for dropped privileges in the session execution component when handling an error during the privilege drop process. A local user can trigger the flawed privilege drop handling to escalate privileges to root and execute arbitrary code.

Exploitation requires an additional exploit to facilitate the attack.

How to mitigate CVE-2026-32107

Install security update from vendor's website.

Sources

https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-p5m6-7m43-pjv9

Improper Check for Dropped Privileges in xrdp - CVE-2026-32107

Detailed vulnerability description

How to mitigate CVE-2026-32107

Sources

Please verify you're human