What is the CVSS score of CVE-2026-27951?

CVE-2026-27951 has a CVSS 3.1 base score of 5.3 (Medium). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L. EPSS exploitation probability: 0.1%.

Which versions of Freerdp are affected by CVE-2026-27951?

Organizations using FreeRDP should be aware of moderate risk from CVE-2026-27951, a integer overflow vulnerability rated CVSS 5.3. Exploitation could cause memory corruption or application crashes.. A patch is available.

Is there a public PoC exploit available for CVE-2026-27951?

Yes, a public proof-of-concept exploit is available for CVE-2026-27951. Prioritise patching immediately. EPSS: 0.1%.

Freerdp CVE-2026-27951

MEDIUM

Integer Overflow or Wraparound (CWE-190)

2026-02-25 security-advisories@github.com

Integer Overflow Red Hat Freerdp Suse

5.3

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

PoC Detected

Feb 27, 2026 - 19:09 vuln.today

Public exploit code

Patch released

Feb 27, 2026 - 19:09 nvd

Patch available

CVE Published

Feb 25, 2026 - 22:16 nvd

MEDIUM 5.3

DescriptionNVD

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function Stream_EnsureCapacity can create an endless blocking loop. This may affect all client and server implementations using FreeRDP. For practical exploitation this will only work on 32bit systems where the available physical memory is >= SIZE_MAX. Version 3.23.0 contains a patch. No known workarounds are available.

AnalysisAI

An integer overflow in FreeRDP's Stream_EnsureCapacity function prior to version 3.23.0 can trigger an endless blocking loop, causing denial of service on affected client and server implementations. This vulnerability primarily impacts 32-bit systems with sufficient physical memory and has public exploit code available. …

RemediationAI

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Vendor patch is available.

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory