Skip to main content

Suse CVE-2026-32624

| EUVDEUVD-2026-23506 MEDIUM
Heap-based Buffer Overflow (CWE-122)
2026-04-17 GitHub_M
6.3
CVSS 4.0 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
6.3 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
SUSE
6.5 MEDIUM
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Primary rating from GitHub Advisory.

CVSS VectorGitHub Advisory

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

7
Patch released
Apr 27, 2026 - 14:16 nvd
Patch available
Patch available
Apr 17, 2026 - 21:16 EUVD
Analysis Generated
Apr 17, 2026 - 20:38 vuln.today
CVSS changed
Apr 17, 2026 - 20:22 NVD
6.3 (MEDIUM)
EUVD ID Assigned
Apr 17, 2026 - 20:15 euvd
EUVD-2026-23506
Analysis Generated
Apr 17, 2026 - 20:15 vuln.today
CVE Published
Apr 17, 2026 - 19:58 nvd
MEDIUM 6.3

DescriptionGitHub Advisory

xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based buffer overflow vulnerability in its logon processing. In environments where domain_user_separator is configured in xrdp.ini, an unauthenticated remote attacker can send a crafted, excessively long username and domain name to overflow the internal buffer. This can corrupt adjacent memory regions, potentially leading to a Denial of Service (DoS) or unexpected behavior. The domain_name_separator directive is commented out by default, systems are not affected by this vulnerability unless it is intentionally configured. This issue has been fixed in version 0.10.6.

AnalysisAI

Heap-based buffer overflow in xrdp 0.10.5 and earlier allows unauthenticated remote attackers to cause denial of service or memory corruption when the domain_user_separator configuration directive is explicitly enabled in xrdp.ini. An attacker sends a crafted RDP logon request with an excessively long username and domain name combination that overflows an internal buffer, corrupting adjacent memory regions. The vulnerability requires non-default configuration (domain_user_separator must be uncommented) and affects only systems with this setting enabled. Vendor-released patch: version 0.10.6.

Technical ContextAI

xrdp is an open-source RDP (Remote Desktop Protocol) server that implements the Microsoft RDP protocol for remote desktop connectivity on Unix-like systems. The vulnerability exists in the logon processing code path, specifically in how xrdp parses and validates username and domain name inputs during RDP session authentication. The domain_user_separator configuration directive allows xrdp to split incoming credentials into separate domain and username components using a specified delimiter. The heap-based buffer overflow (CWE-122) occurs when the combined length of the domain and username components exceeds the pre-allocated buffer size in memory, causing a write beyond the buffer boundary. This corrupts adjacent heap-allocated structures, potentially including metadata or other sensitive data used by the RDP server process. The vulnerability is in the unauthenticated portion of the RDP handshake, meaning an attacker does not need valid credentials to trigger the overflow.

RemediationAI

Upgrade xrdp to version 0.10.6 or later to obtain the vendor-released patch. For systems unable to upgrade immediately, disable or comment out the domain_user_separator directive in the xrdp.ini configuration file as a temporary workaround-this completely eliminates the vulnerability but disables domain-based username parsing, requiring users to authenticate using username-only credentials without domain prefixes. Additional compensating controls include network-level ingress filtering to restrict RDP connections (port 3389/TCP) to trusted administrative networks only, and implementing rate limiting on failed RDP logon attempts to reduce the practical rate of DoS attacks. Refer to the upstream advisory at https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-7q2g-6fjr-h6pp and release notes at https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.6 for patch validation and deployment guidance.

Vendor StatusVendor

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise Module for Basesystem 15 SP7 Fixed
SUSE Linux Enterprise Server 15 SP7 Fixed
SUSE Linux Enterprise Server for SAP Applications 15 SP7 Fixed

Share

CVE-2026-32624 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy