The SentinelOne Annual Threat Report - A Defenders Guide from the FrontlinesThe SentinelOne Annual Threat ReportGet the Report
Experiencing a Breach?Blog
Get StartedContact Us
SentinelOne
  • Platform
    Platform Overview
    • Singularity Platform
      Welcome to Integrated Enterprise Security
    • AI for Security
      Leading the Way in AI-Powered Security Solutions
    • Securing AI
      Accelerate AI Adoption with Secure AI Tools, Apps, and Agents.
    • How It Works
      The Singularity XDR Difference
    • Singularity Marketplace
      One-Click Integrations to Unlock the Power of XDR
    • Pricing & Packaging
      Comparisons and Guidance at a Glance
    Data & AI
    • Purple AI
      Accelerate SecOps with Generative AI
    • Singularity Hyperautomation
      Easily Automate Security Processes
    • AI-SIEM
      The AI SIEM for the Autonomous SOC
    • Singularity Data Lake
      AI-Powered, Unified Data Lake
    • Singularity Data Lake for Log Analytics
      Seamlessly Ingest Data from On-Prem, Cloud or Hybrid Environments
    Endpoint Security
    • Singularity Endpoint
      Autonomous Prevention, Detection, and Response
    • Singularity XDR
      Native & Open Protection, Detection, and Response
    • Singularity RemoteOps Forensics
      Orchestrate Forensics at Scale
    • Singularity Threat Intelligence
      Comprehensive Adversary Intelligence
    • Singularity Vulnerability Management
      Application & OS Vulnerability Management
    • Singularity Identity
      Identity Threat Detection and Response
    Cloud Security
    • Singularity Cloud Security
      Block Attacks with an AI-Powered CNAPP
    • Singularity Cloud Native Security
      Secure Cloud and Development Resources
    • Singularity Cloud Workload Security
      Real-Time Cloud Workload Protection Platform
    • Singularity Cloud Data Security
      AI-Powered Threat Detection for Cloud Storage
    • Singularity Cloud Security Posture Management
      Detect and Remediate Cloud Misconfigurations
    Securing AI
    • Prompt Security
      Secure AI Tools Across Your Enterprise
  • Why SentinelOne?
    Why SentinelOne?
    • Why SentinelOne?
      Cybersecurity Built for What’s Next
    • Our Customers
      Trusted by the World’s Leading Enterprises
    • Industry Recognition
      Tested and Proven by the Experts
    • About Us
      The Industry Leader in Autonomous Cybersecurity
    Compare SentinelOne
    • Arctic Wolf
    • Broadcom
    • CrowdStrike
    • Cybereason
    • Microsoft
    • Palo Alto Networks
    • Sophos
    • Splunk
    • Trellix
    • Trend Micro
    • Wiz
    Verticals
    • Energy
    • Federal Government
    • Finance
    • Healthcare
    • Higher Education
    • K-12 Education
    • Manufacturing
    • Retail
    • State and Local Government
  • Services
    Managed Services
    • Managed Services Overview
      Wayfinder Threat Detection & Response
    • Threat Hunting
      World-Class Expertise and Threat Intelligence
    • Managed Detection & Response
      24/7/365 Expert MDR Across Your Entire Environment
    • Incident Readiness & Response
      DFIR, Breach Readiness, & Compromise Assessments
    Support, Deployment, & Health
    • Technical Account Management
      Customer Success with Personalized Service
    • SentinelOne GO
      Guided Onboarding & Deployment Advisory
    • SentinelOne University
      Live and On-Demand Training
    • Services Overview
      Comprehensive Solutions for Seamless Security Operations
    • SentinelOne Community
      Community Login
  • Partners
    Our Network
    • MSSP Partners
      Succeed Faster with SentinelOne
    • Singularity Marketplace
      Extend the Power of S1 Technology
    • Cyber Risk Partners
      Enlist Pro Response and Advisory Teams
    • Technology Alliances
      Integrated, Enterprise-Scale Solutions
    • SentinelOne for AWS
      Hosted in AWS Regions Around the World
    • Channel Partners
      Deliver the Right Solutions, Together
    • SentinelOne for Google Cloud
      Unified, Autonomous Security Giving Defenders the Advantage at Global Scale
    • Partner Locator
      Your Go-to Source for Our Top Partners in Your Region
    Partner Portal→
  • Resources
    Resource Center
    • Case Studies
    • Data Sheets
    • eBooks
    • Reports
    • Videos
    • Webinars
    • Whitepapers
    • Events
    View All Resources→
    Blog
    • Feature Spotlight
    • For CISO/CIO
    • From the Front Lines
    • Identity
    • Cloud
    • macOS
    • SentinelOne Blog
    Blog→
    Tech Resources
    • SentinelLABS
    • Ransomware Anthology
    • Cybersecurity 101
  • About
    About SentinelOne
    • About SentinelOne
      The Industry Leader in Cybersecurity
    • Investor Relations
      Financial Information & Events
    • SentinelLABS
      Threat Research for the Modern Threat Hunter
    • Careers
      The Latest Job Opportunities
    • Press & News
      Company Announcements
    • Cybersecurity Blog
      The Latest Cybersecurity Threats, News, & More
    • FAQ
      Get Answers to Our Most Frequently Asked Questions
    • DataSet
      The Live Data Platform
    • S Foundation
      Securing a Safer Future for All
    • S Ventures
      Investing in the Next Generation of Security, Data and AI
  • Pricing
Get StartedContact Us
CVE Vulnerability Database
Vulnerability Database/CVE-2026-31885

CVE-2026-31885: FreeRDP Buffer Overflow Vulnerability

CVE-2026-31885 is a buffer overflow flaw in FreeRDP's MS-ADPCM and IMA-ADPCM decoders caused by unchecked predictor values. This article covers technical details, affected versions, security impact, and mitigation strategies.

Published: March 20, 2026

CVE-2026-31885 Overview

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP). A critical out-of-bounds read vulnerability exists in the MS-ADPCM and IMA-ADPCM audio decoders prior to version 3.24.0. The vulnerability occurs due to unchecked predictor and step_index values from input data, allowing attackers to read memory beyond allocated buffer boundaries. This flaw can lead to information disclosure or application crashes when processing maliciously crafted audio data during RDP sessions.

Critical Impact

Remote attackers can exploit this vulnerability over the network without authentication to cause high confidentiality and availability impacts through out-of-bounds memory access in FreeRDP audio processing.

Affected Products

  • FreeRDP versions prior to 3.24.0
  • Applications and systems using FreeRDP libraries for RDP connectivity
  • Linux, Windows, and macOS systems running vulnerable FreeRDP clients

Discovery Timeline

  • 2026-03-13 - CVE-2026-31885 published to NVD
  • 2026-03-17 - Last updated in NVD database

Technical Details for CVE-2026-31885

Vulnerability Analysis

This vulnerability is classified as CWE-125 (Out-of-Bounds Read), a memory corruption issue in the audio decoding functionality of FreeRDP. The MS-ADPCM (Microsoft Adaptive Differential Pulse Code Modulation) and IMA-ADPCM decoders fail to properly validate the predictor and step_index values received from input data streams during audio decompression.

When processing incoming audio data during an RDP session, these decoders use predictor and step_index values as indices into lookup tables. Without proper bounds checking, an attacker can supply crafted values that exceed the valid range of these tables, causing the application to read memory outside the intended buffer boundaries.

The network-accessible nature of RDP means this vulnerability can be triggered remotely. An attacker controlling an RDP server (or performing a man-in-the-middle attack) could send maliciously crafted audio data to a connecting FreeRDP client, triggering the out-of-bounds read. This could result in information leakage from process memory or cause the client application to crash, creating a denial of service condition.

Root Cause

The root cause of this vulnerability lies in the missing input validation for predictor and step_index values in the MS-ADPCM and IMA-ADPCM decoder implementations. These values are extracted directly from the incoming audio data stream and used as array indices without verifying they fall within valid bounds. The ADPCM decoding algorithm relies on lookup tables for step size calculations, and unchecked index values allow reads beyond these table boundaries.

Attack Vector

The attack vector is network-based, requiring no privileges or user interaction. An attacker can exploit this vulnerability by:

  1. Setting up a malicious RDP server or compromising an existing one
  2. Waiting for a victim using a vulnerable FreeRDP client to connect
  3. Sending specially crafted audio stream data containing out-of-bounds predictor or step_index values
  4. The vulnerable decoder processes the malicious data, triggering the out-of-bounds read
  5. This can expose sensitive memory contents or crash the client application

The vulnerability can also be exploited through man-in-the-middle attacks where an attacker intercepts and modifies RDP traffic to inject malicious audio payloads.

The vulnerability manifests in the audio decoding functions where predictor and step_index values are used without bounds validation. Refer to the GitHub Security Advisory for detailed technical information about the specific code locations and the fix implementation.

Detection Methods for CVE-2026-31885

Indicators of Compromise

  • FreeRDP client crashes during RDP sessions with audio enabled
  • Unexpected memory access violations in FreeRDP processes
  • Anomalous RDP audio stream data with malformed ADPCM headers
  • Core dumps or error logs indicating out-of-bounds memory access in audio decoder functions

Detection Strategies

  • Monitor for FreeRDP process crashes or segmentation faults during active RDP sessions
  • Implement network traffic analysis to identify malformed RDP audio channel data
  • Deploy endpoint detection rules to identify suspicious memory access patterns in FreeRDP processes
  • Audit systems for vulnerable FreeRDP versions (prior to 3.24.0) using software inventory tools

Monitoring Recommendations

  • Enable crash reporting and logging for FreeRDP client applications
  • Monitor system logs for repeated FreeRDP process terminations
  • Implement network intrusion detection signatures for anomalous RDP audio traffic
  • Track software versions across the environment to identify unpatched FreeRDP installations

How to Mitigate CVE-2026-31885

Immediate Actions Required

  • Upgrade FreeRDP to version 3.24.0 or later immediately
  • Review all systems using FreeRDP libraries and schedule updates
  • Consider disabling audio redirection in RDP sessions as a temporary measure until patching is complete
  • Monitor for any signs of exploitation attempts on vulnerable systems

Patch Information

FreeRDP has released version 3.24.0 which addresses this vulnerability by implementing proper bounds checking for predictor and step_index values in the MS-ADPCM and IMA-ADPCM decoders. The fix is available in the GitHub commit. Organizations should update to this version or later through their standard package management systems or by building from source.

Workarounds

  • Disable audio redirection in FreeRDP client configurations using /sound:sys:none or equivalent settings
  • Restrict RDP connections to trusted servers only through firewall rules and network segmentation
  • Implement network-level filtering to block connections to unknown or untrusted RDP endpoints
  • Use VPN or encrypted tunnels for RDP traffic to prevent man-in-the-middle injection attacks
bash
# Disable audio redirection in FreeRDP connection
xfreerdp /v:trusted-server.example.com /u:username /sound:sys:none

# Alternative: Use network policy to restrict RDP destinations
# iptables example to allow RDP only to known servers
iptables -A OUTPUT -p tcp --dport 3389 -d trusted-rdp-server-ip -j ACCEPT
iptables -A OUTPUT -p tcp --dport 3389 -j DROP

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

  • Vulnerability Details
  • TypeBuffer Overflow
  • Vendor/TechFreerdp
  • SeverityCRITICAL
  • CVSS Score9.4
  • EPSS Probability0.03%
  • Known ExploitedNo
  • CVSS Vector
  • CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
  • Impact Assessment
  • ConfidentialityLow
  • IntegrityNone
  • AvailabilityHigh
  • CWE References
  • CWE-125
  • Vendor Resources
  • GitHub Commit Update
  • GitHub Security Advisory
  • Related CVEs
  • CVE-2026-33982: FreeRDP Buffer Overflow Vulnerability
  • CVE-2026-33984: FreeRDP Buffer Overflow Vulnerability
  • CVE-2026-33986: FreeRDP Buffer Overflow Vulnerability
  • CVE-2026-33987: FreeRDP Buffer Overflow Vulnerability
Default Legacy - Prefooter | Experience the World’s Most Advanced Cybersecurity Platform

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform can protect your organization now and into the future.

Try SentinelOne
  • Get Started
  • Get a Demo
  • Product Tour
  • Why SentinelOne
  • Pricing & Packaging
  • FAQ
  • Contact
  • Contact Us
  • Customer Support
  • SentinelOne Status
  • Language
  • Platform
  • Singularity Platform
  • Singularity Endpoint
  • Singularity Cloud
  • Singularity AI-SIEM
  • Singularity Identity
  • Singularity Marketplace
  • Purple AI
  • Services
  • Wayfinder TDR
  • SentinelOne GO
  • Technical Account Management
  • Support Services
  • Verticals
  • Energy
  • Federal Government
  • Finance
  • Healthcare
  • Higher Education
  • K-12 Education
  • Manufacturing
  • Retail
  • State and Local Government
  • Cybersecurity for SMB
  • Resources
  • Blog
  • Labs
  • Case Studies
  • Videos
  • Product Tours
  • Events
  • Cybersecurity 101
  • eBooks
  • Webinars
  • Whitepapers
  • Press
  • News
  • Ransomware Anthology
  • Company
  • About Us
  • Our Customers
  • Careers
  • Partners
  • Legal & Compliance
  • Security & Compliance
  • Investor Relations
  • S Foundation
  • S Ventures

©2026 SentinelOne, All Rights Reserved.

Privacy Notice Terms of Use

English