Main Vulnerability Database Vulnerabilities #VU126464

Improper validation of integrity check value in xrdp - CVE-2026-32105

Published: April 17, 2026

Vulnerability identifier: #VU126464

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2026-32105

CWE-ID: CWE-354

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: neutrinolabs

Affected software:
xrdp

Detailed vulnerability description

The vulnerability allows a remote attacker to modify encrypted RDP traffic in transit without detection.

The vulnerability exists due to improper validation of integrity check value in the Classic RDP Security layer packet handling when processing encrypted RDP packets. A remote attacker can perform a man-in-the-middle attack to modify encrypted RDP traffic in transit without detection.

It does not affect connections where the TLS security layer is enforced.

How to mitigate CVE-2026-32105

Install security update from vendor's website.

Sources

https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-j2jm-c596-c5q3

Improper validation of integrity check value in xrdp - CVE-2026-32105

Detailed vulnerability description

How to mitigate CVE-2026-32105

Sources

Please verify you're human