Missing Authentication for Critical Function in xrdp - CVE-2026-55626
Published: July 1, 2026
xrdp
Detailed vulnerability description
The vulnerability allows a remote attacker to view or control other users' active desktop sessions.
The vulnerability exists due to improper authentication in the Xvnc backend when initializing an authenticated user session over UNIX domain sockets. A remote attacker can connect to the insufficiently protected Xvnc process to view or control other users' active desktop sessions.
Only systems using the Xvnc backend over UNIX domain sockets are affected; deployments using xorgxrdp or Xvnc over TCP sockets are not affected.