Uncontrolled Memory Allocation in FreeRDP - #VU137832
Published: July 16, 2026
FreeRDP
Detailed vulnerability description
The vulnerability allows a remote user to cause a denial of service.
The vulnerability exists due to uncontrolled memory allocation in rdpei_server_handle_messages() when processing a peer-controlled RDPEI PDU length field. A remote user can send a specially crafted RDPEI header with a large declared body length to cause a denial of service.
The issue affects FreeRDP server, proxy, or shadow deployments where the RDPEI channel is reachable.