49 matches found
CVE-2026-21533
CVE-2026-21533 affects Windows Remote Desktop Services (RDS) and is caused by improper privilege management (CWE-269), allowing a local authenticated attacker with low privileges to elevate to SYSTEM. Multiple connected sources corroborate that the issue is a local EoP in RDS with CVSSv3 7.8 (HIG...
Windows Remote Desktop Services Elevation of Privilege Vulnerability
Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate privileges locally...
CVE-2025-59202
Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges locally...
CVE-2025-59202
Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges locally...
CVE-2025-59202 Windows Remote Desktop Services Elevation of Privilege Vulnerability
...
Windows Remote Desktop Services Elevation of Privilege Vulnerability
Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges locally...
Microsoft Windows Remote Desktop Services 授权问题漏洞
Microsoft Windows Remote Desktop Services is a collection of features from Microsoft Corporation USA that allow users to remotely access graphical desktops and Windows applications. An authorization issue vulnerability exists in Microsoft Windows Remote Desktop Services that stems from an...
EUVD-2025-2395
Malicious code in bioql PyPI...
EUVD-2025-10212
Malicious code in bioql PyPI...
EUVD-2025-17794
Malicious code in bioql PyPI...
Exploit for Race Condition in Microsoft
RCE-CVE-2025-32710 Windows Remote Desktop Services Vulnerabili...
CVE-2025-32710
Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network...
Windows Remote Desktop Services Remote Code Execution Vulnerability
Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network...
PT-2025-24825
Name of the Vulnerable Software and Affected Versions Windows Remote Desktop Services affected versions not specified Description The issue is related to a use after free condition in Windows Remote Desktop Services, which enables an unauthorized attacker to execute code over a network...
Microsoft Patch Tuesday for April 2025 — Snort rules and prominent vulnerabilities
Microsoft has released its monthly security update for April of 2025 which includes 126 vulnerabilities affecting a range of products, including 11 that Microsoft marked as "critical". In this month's release, none of the included vulnerabilities have been observed by Microsoft to be exploited in...
CVE-2025-26671
Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network...
CVE-2025-26671
CVE-2025-26671 is a Windows Remote Desktop Services remote code execution vulnerability. The connected documents indicate a use-after-free in the RDS component that allows a network-exposed attacker to execute arbitrary code on the affected host without user interaction. Exploitation is described...
Windows Remote Desktop Services Remote Code Execution Vulnerability
Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network...
PT-2025-15513 · Microsoft · Windows Remote Desktop Services +1
Name of the Vulnerable Software and Affected Versions: Windows Remote Desktop Services affected versions not specified Description: The issue is related to a use after free condition in Windows Remote Desktop Services, allowing an unauthorized attacker to execute code over a network. This enables...
PT-2025-15539 · Microsoft · Remote Desktop Gateway Service +1
Name of the Vulnerable Software and Affected Versions: Windows Remote Desktop Services affected versions not specified Description: The issue allows remote attackers to execute arbitrary code and affect the system. This is due to a use-after-free condition in the Windows Remote Desktop Gateway...