Reachable assertion in FreeRDP - #VU137830
Published: July 16, 2026
FreeRDP
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service.
The vulnerability exists due to an assertion failure caused by improper handling of zero-length ping control frames in the gateway WebSocket transport when processing server-sent ping control frames. A remote attacker can send a zero-length ping frame to cause a denial of service.
A valid zero-length Ping reaches an assertion in websocket_context_write_wstream() and terminates the client.