CVE-2026-24678 | FreeRDP up to 3.21.x ecam_channel_write use after free (GHSA-6gvg-29wx-6v7h)

Inserito da Angelo Barbosa | Feb 9, 2026 | CVE

A vulnerability labeled as critical has been found in FreeRDP up to 3.21.x. This affects the function ecam_channel_write. The manipulation results in use after free.

This vulnerability is reported as CVE-2026-24678. The attack can be launched remotely. No exploit exists.

The affected component should be upgraded.

CVE-2026-24678 | FreeRDP up to 3.21.x ecam_channel_write use after free (GHSA-6gvg-29wx-6v7h)

Post correlati

CVE-2025-41068 | Open5GS up to 2.7.4 Discovery Service assertion

CVE-2025-0110 | Palo Alto PAN-OS OpenConfig Plugin up to 2.1.1 Management Web Interface os command injection

CVE-2025-24599 | Tribulant Newsletters Plugin up to 4.9.9.6 on WordPress cross site scripting

CVE-2024-46209 | Redaxo CMS 5.17.1 /media/test.html password cross site scripting