Improper Certificate Validation in FreeRDP - #VU137820
Published: July 16, 2026
FreeRDP
Detailed vulnerability description
The vulnerability allows a remote attacker to bypass TLS server identity validation.
The vulnerability exists due to improper certificate validation in x509_utils_get_dns_names() when parsing DNS subject alternative name values containing embedded NUL bytes. A remote attacker can present a specially crafted certificate to bypass TLS server identity validation.
Exploitation requires a certificate chain trusted by the FreeRDP client.