CVE-2026-23532 | FreeRDP up to 3.20.x gdi_SurfaceToSurface heap-based overflow (GHSA-fq8c-87hj-7gvr)

Inserito da Angelo Barbosa | Gen 19, 2026 | CVE

A vulnerability classified as critical has been found in FreeRDP up to 3.20.x. This vulnerability affects the function gdi_SurfaceToSurface. The manipulation leads to heap-based buffer overflow.

This vulnerability is referenced as CVE-2026-23532. Remote exploitation of the attack is possible. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2026-23532 | FreeRDP up to 3.20.x gdi_SurfaceToSurface heap-based overflow (GHSA-fq8c-87hj-7gvr)

Post correlati

CVE-2025-6914 | PHPGurukul Student Record System 3.2 /edit-student.php fmarks2 sql injection

CVE-2024-7783 | mintplex-labs anything-llm up to 1.0.2 JSON Web Token cleartext storage

CVE-2025-67634 | CISA Software Acquisition Guide Tool prior 2025-12-11 JSON File Parser cross site scripting

CVE-2024-35139 | IBM Security Verify Access Docker up to 10.0.7.1 default permission (XFDB-292415)