CVE-2026-33995 | FreeRDP up to 3.24.1 kerberos.c kerberos_AcceptSecurityContext double free

March 31, 2026 Yanac

A vulnerability identified as problematic has been detected in FreeRDP up to 3.24.1. This affects the function kerberos_AcceptSecurityContext in the library winpr/libwinpr/sspi/Kerberos/kerberos.c. Performing a manipulation results in double free.

This vulnerability is cataloged as CVE-2026-33995. It is possible to initiate the attack remotely. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More