Heap-based buffer overflow in FreeRDP - #VU137843
Published: July 16, 2026
FreeRDP
Detailed vulnerability description
The vulnerability allows a remote user to execute arbitrary code.
The vulnerability exists due to heap-based buffer overflow in the FreeRDP Windows client clipboard virtual channel handling in wfreerdp when processing CLIPRDR_FILE_CONTENTS_RESPONSE PDUs from a server. A remote user can send a specially crafted clipboard file contents response to execute arbitrary code.
User interaction is required to connect to a malicious RDP server and perform a paste operation in Windows Explorer, and clipboard redirection must be enabled.