Primary

Context

xrdp Out-of-Bounds Read Vulnerability in RDP Capability Exchange Phase

Vulnerability

Patched

A out-of-bounds read vulnerability has been identified in xrdp, an open-source RDP server, in versions prior to 0.10.6. The vulnerability occurs during the RDP capability exchange phase, where memory is accessed without proper validation of the remaining buffer length. This flaw allows remote, unauthenticated attackers to send specially crafted Confirm Active PDUs, potentially leading to a process crash (denial-of-service) or unauthorized disclosure of sensitive information from the process memory.

Impact

Exploitation of this vulnerability can cause a process crash, leading to a denial-of-service condition. Additionally, there is a risk of disclosing sensitive information from the process memory.

Remediation

Users can upgrade to xrdp version 0.10.6 to address this vulnerability.

Added: Apr 17, 2026, 8:26 PM

Updated: Apr 17, 2026, 8:26 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

5.0

exploitability

7.8

remediation

7.7

relevance

6.1

threat

0.0

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

5.0

exploitability

7.8

remediation

7.7

relevance

6.1

threat

0.0

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

xrdp Out-of-Bounds Read Vulnerability in RDP Capability Exchange Phase

Vulnerability

Impact

Remediation

Affected Products

neutrinolabs xrdp

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating