Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.1
Remote Desktop Service in Red Hat Software at Risk of Unauthorized Access
RHSA-2026:3068
Summary
The remote desktop service in Red Hat software has a security issue that could allow an attacker to access a system without permission. This could happen if an attacker can trick a user into connecting to a fake remote desktop server. Users of Red Hat software should update their systems to the latest version to prevent this risk.
What to do
- Update redhat freerdp to version 2:3.10.3-5.el10_1.2.
- Update redhat freerdp-debuginfo to version 2:3.10.3-5.el10_1.2.
- Update redhat freerdp-debugsource to version 2:3.10.3-5.el10_1.2.
- Update redhat freerdp-devel to version 2:3.10.3-5.el10_1.2.
- Update redhat freerdp-libs to version 2:3.10.3-5.el10_1.2.
- Update redhat freerdp-libs-debuginfo to version 2:3.10.3-5.el10_1.2.
- Update redhat freerdp-server to version 2:3.10.3-5.el10_1.2.
- Update redhat freerdp-server-debuginfo to version 2:3.10.3-5.el10_1.2.
- Update redhat libwinpr to version 2:3.10.3-5.el10_1.2.
- Update redhat libwinpr-debuginfo to version 2:3.10.3-5.el10_1.2.
- Update redhat libwinpr-devel to version 2:3.10.3-5.el10_1.2.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| redhat | freerdp | <= 2:3.10.3-5.el10_1.2 | 2:3.10.3-5.el10_1.2 |
| redhat | freerdp-debuginfo | <= 2:3.10.3-5.el10_1.2 | 2:3.10.3-5.el10_1.2 |
| redhat | freerdp-debugsource | <= 2:3.10.3-5.el10_1.2 | 2:3.10.3-5.el10_1.2 |
| redhat | freerdp-devel | <= 2:3.10.3-5.el10_1.2 | 2:3.10.3-5.el10_1.2 |
| redhat | freerdp-libs | <= 2:3.10.3-5.el10_1.2 | 2:3.10.3-5.el10_1.2 |
| redhat | freerdp-libs-debuginfo | <= 2:3.10.3-5.el10_1.2 | 2:3.10.3-5.el10_1.2 |
| redhat | freerdp-server | <= 2:3.10.3-5.el10_1.2 | 2:3.10.3-5.el10_1.2 |
| redhat | freerdp-server-debuginfo | <= 2:3.10.3-5.el10_1.2 | 2:3.10.3-5.el10_1.2 |
| redhat | libwinpr | <= 2:3.10.3-5.el10_1.2 | 2:3.10.3-5.el10_1.2 |
| redhat | libwinpr-debuginfo | <= 2:3.10.3-5.el10_1.2 | 2:3.10.3-5.el10_1.2 |
| redhat | libwinpr-devel | <= 2:3.10.3-5.el10_1.2 | 2:3.10.3-5.el10_1.2 |
Original title
Red Hat Security Advisory: freerdp security update
osv CVSS3.1
8.1
- https://access.redhat.com/errata/RHSA-2026:3068 Vendor Advisory
- https://access.redhat.com/security/updates/classification/#important Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2429645 Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2429647 Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2429649 Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2429653 Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2438197 Third Party Advisory
- https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3068.j... Vendor Advisory
- https://access.redhat.com/security/cve/CVE-2026-22853 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2026-22853 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-22853 Vendor Advisory
- https://github.com/FreeRDP/FreeRDP/releases/tag/3.20.1 Third Party Advisory
- https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-47v9-p4gp-w5ch Third Party Advisory
- https://access.redhat.com/security/cve/CVE-2026-22855 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2026-22855 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-22855 Vendor Advisory
- https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rwp3-g84r-6mx9 Third Party Advisory
- https://access.redhat.com/security/cve/CVE-2026-22858 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2026-22858 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-22858 Vendor Advisory
- https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-qmqf-m84q-x896 Third Party Advisory
- https://access.redhat.com/security/cve/CVE-2026-22859 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2026-22859 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-22859 Vendor Advisory
- https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-56f5-76qv-2r36 Third Party Advisory
- https://access.redhat.com/security/cve/CVE-2026-24678 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2026-24678 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-24678 Vendor Advisory
- https://github.com/FreeRDP/FreeRDP/commit/f3ab1a16139036179d9852745fdade18fec116... Third Party Advisory
- https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-6gvg-29wx-6v7h Third Party Advisory
Published: 24 Feb 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026