CVE-2026-44421 | FreeRDP up to 3.25.x gdi_CacheToSurface heap-based overflow (GHSA-p6r2-4hgm-m6ff)

A vulnerability has been found in FreeRDP up to 3.25.x and classified as critical. Affected is the function gdi_CacheToSurface. Performing a manipulation results in heap-based buffer overflow.

This vulnerability is reported as CVE-2026-44421. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More