CVE-2026-33995

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a double-free vulnerability in kerberos_AcceptSecurityContext() and kerberos_InitializeSecurityContextA() (WinPR, winpr/libwinpr/sspi/Kerberos/kerberos.c) can cause a crash in any FreeRDP clients on systems where Kerberos and/or Kerberos U2U is configured (Samba AD member, or krb5 for NFS). The crash is triggered during NLA connection teardown and requires a failed authentication attempt. This issue has been patched in version 3.24.2.

CVSS v3 5.3 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://github.com/FreeRDP/FreeRDP/commit/8078b8af1359055972e4fb2f509f543b69169391	Patch
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mv25-f4p2-5mxx	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*

History

01 Apr 2026, 18:35

Type	Values Removed	Values Added
First Time		Freerdp Freerdp freerdp
CPE		cpe:2.3:a:freerdp:freerdp::::::::
References	~~() https://github.com/FreeRDP/FreeRDP/commit/8078b8af1359055972e4fb2f509f543b69169391 -~~	() https://github.com/FreeRDP/FreeRDP/commit/8078b8af1359055972e4fb2f509f543b69169391 - Patch
References	~~() https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mv25-f4p2-5mxx -~~	() https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mv25-f4p2-5mxx - Patch, Vendor Advisory

01 Apr 2026, 14:24

Type	Values Removed	Values Added
Summary		(es) FreeRDP es una implementación gratuita del Protocolo de Escritorio Remoto. Antes de la versión 3.24.2, una vulnerabilidad de doble liberación en kerberos_AcceptSecurityContext() y kerberos_InitializeSecurityContextA() (WinPR, winpr/libwinpr/sspi/Kerberos/kerberos.c) puede causar un fallo en cualquier cliente de FreeRDP en sistemas donde Kerberos y/o Kerberos U2U está configurado (miembro de Samba AD, o krb5 para NFS). El fallo se desencadena durante la desconexión de la conexión NLA y requiere un intento de autenticación fallido. Este problema ha sido parcheado en la versión 3.24.2.

30 Mar 2026, 22:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-03-30 22:16

Updated : 2026-04-01 18:35

NVD link : CVE-2026-33995

Mitre link : CVE-2026-33995

CVE.ORG link : CVE-2026-33995

JSON object : View

Products Affected

freerdp

freerdp

CWE

CWE-415

Double Free

5.3 /10