{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata — refreshed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2026-33982/","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cves":[{"cvss":7.1,"id":"CVE-2026-33982"}],"_cs_exploited":false,"_cs_products":[],"_cs_severities":["medium"],"_cs_tags":["freerdp","heap-buffer-overflow","cve-2026-33982","rdp"],"_cs_type":"advisory","_cs_vendors":[],"content_html":"\u003cp\u003eCVE-2026-33982 is a heap-buffer-overflow READ vulnerability affecting FreeRDP, a widely used open-source implementation of the Remote Desktop Protocol (RDP). The vulnerability exists in versions prior to 3.24.2 and is located within the \u003ccode\u003ewinpr_aligned_offset_recalloc()\u003c/code\u003e function. Specifically, the flaw occurs due to an out-of-bounds read 24 bytes before the allocated buffer, which could be triggered during specific RDP operations involving memory reallocation. Successful exploitation can lead…\u003c/p\u003e\n","date_modified":"2026-03-30T22:16:19Z","date_published":"2026-03-30T22:16:19Z","id":"/briefs/2026-03-freerdp-heap-overflow/","summary":"A heap-buffer-overflow read vulnerability exists in FreeRDP versions prior to 3.24.2, specifically in the winpr_aligned_offset_recalloc() function, potentially leading to denial of service or information disclosure.","title":"FreeRDP Heap-Buffer-Overflow Vulnerability (CVE-2026-33982)","url":"https://feed.craftedsignal.io/briefs/2026-03-freerdp-heap-overflow/"}],"language":"en","title":"CraftedSignal Threat Feed — Cve-2026-33982","version":"https://jsonfeed.org/version/1.1"}