CVE-2026-23948
Analyzed Analyzed - Analysis Complete
NULL Pointer Dereference in FreeRDP Causes Remote Crash

Publication date: 2026-02-09

Last updated on: 2026-02-10

Assigner: GitHub, Inc.

Description
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, a NULL pointer dereference vulnerability in rdp_write_logon_info_v2() allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0. This vulnerability is fixed in 3.22.0.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-09
Last Modified
2026-02-10
Generated
2026-06-16
AI Q&A
2026-02-09
EPSS Evaluated
2026-06-14
NVD
CVE-2026-23948
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
freerdp freerdp to 3.22.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-476 The product dereferences a pointer that it expects to be valid but is NULL.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in FreeRDP, a free implementation of the Remote Desktop Protocol. Before version 3.22.0, there is a NULL pointer dereference issue in the function rdp_write_logon_info_v2(). A malicious RDP server can exploit this by sending a specially crafted LogonInfoV2 PDU where the cbDomain or cbUserName fields are set to 0. This causes the FreeRDP proxy to crash.

Impact Analysis

The vulnerability can be exploited by a malicious RDP server to cause the FreeRDP proxy to crash. This denial of service can disrupt remote desktop sessions and potentially impact availability of services relying on FreeRDP.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

To mitigate this vulnerability, update FreeRDP to version 3.22.0 or later, where the NULL pointer dereference issue in rdp_write_logon_info_v2() has been fixed.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-23948. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart