Lucene search
K
MicrosoftRemote Desktop Client

26 matches found

CVE
CVE
added 2022/03/09 5:7 p.m.376 views

CVE-2022-24503

CVE-2022-24503 is a Remote Desktop Protocol Client Information Disclosure vulnerability. Connected sources indicate it affects Windows Remote Desktop Client and can be triggered over the network with no authentication and no user interaction, exposing partial confidentiality (C:L). The issue is t...

5.4CVSS6.6AI score0.02269EPSS
CVE
CVE
added 2022/05/10 8:33 p.m.308 views

CVE-2022-22017

CVE-2022-22017 is a Remote Desktop Client RCE vulnerability affecting Windows clients. The attack requires a user to connect to a malicious RDP server; on connection, code can be executed on the victim’s system with the user’s privileges. Public patch guidance is available via Microsoft KBs (KB50...

9.3CVSS9.1AI score0.37099EPSS
CVE
CVE
added 2019/07/15 6:56 p.m.236 views

CVE-2019-0887

CVE-2019-0887 is a remote code execution vulnerability in Remote Desktop Services related to the shared clipboard. The issue arises when a malicious RDP server can abuse clipboard redirection to drop arbitrary files via path traversal in the clipboard sharing channel, impacting RDP clients (mstsc...

8.5CVSS8AI score0.70966EPSS
CVE
CVE
added 2021/08/12 6:12 p.m.224 views

CVE-2021-34535

CVE-2021-34535 is a Remote Desktop Client remote code execution vulnerability in Windows. According to the connected sources, it affects the Windows Remote Desktop Client component and is rated High (CVSS v3.1 base 8.8). Exploitation was addressed in Microsoft’s August 2021 Patch Tuesday updates;...

8.8CVSS8.8AI score0.18354EPSS
CVE
CVE
added 2022/05/10 8:33 p.m.224 views

CVE-2022-22015

Technical details about CVE-2022-22015 are not provided in the connected documents. The MSKB entries listed pertain to OS/security updates but do not disclose affected RDP components, exploit specifics, or patch details for this CVE. Monitor for updates.

6.5CVSS7.7AI score0.02369EPSS
CVE
CVE
added 2023/06/13 11:26 p.m.213 views

CVE-2023-29362

Technical details about CVE-2023-29362 (affected product, vulnerable component, root cause, impact, or fix) are not provided in the supplied documents. Monitor for updates from official advisories and vulnerability databases.

8.8CVSS9.3AI score0.01346EPSS
CVE
CVE
added 2022/05/10 8:34 p.m.210 views

CVE-2022-26940

CVE-2022-26940 is a Remote Desktop Protocol Client Information Disclosure Vulnerability affecting the Microsoft Remote Desktop Client. Public documents confirm the issue pertains to information disclosure within the RDP client component, with linked references to Microsoft’s advisory (KB/MSRC) an...

6.5CVSS7.2AI score0.02369EPSS
CVE
CVE
added 2023/04/11 7:13 p.m.160 views

CVE-2023-28267

CVE-2023-28267 is the Remote Desktop Protocol Client Information Disclosure Vulnerability affecting the Microsoft Windows Remote Desktop Client (CPE: cpe:/a:microsoft:remote_desktop_connection). The CVSSv3.1 base score is 6.5 (Medium), with attack vector Network, attack complexity Low, privileges...

6.5CVSS6.5AI score0.02086EPSS
CVE
CVE
added 2024/08/13 5:30 p.m.159 views

CVE-2024-38131

Technical details about CVE-2024-38131 are not publicly provided in the connected documents. The available material lacks product/version/root-cause/remediation specifics. Monitor official advisories/updates for concrete information.

8.8CVSS9AI score0.01237EPSS
CVE
CVE
added 2024/12/10 8:6 p.m.153 views

CVE-2024-49105

CVE-2024-49105 affects the Windows Remote Desktop Client. It enables remote code execution over the network; exploitation requires user interaction and high privileges, with high impacts to confidentiality, integrity, and availability. CVSS v3.1 base score 8.4 (Network, Low attack complexity, Pri...

8.4CVSS8.6AI score0.01507EPSS
CVE
CVE
added 2021/01/12 7:42 p.m.147 views

CVE-2021-1669

CVE-2021-1669 is a Windows Remote Desktop Security Feature Bypass vulnerability. The linked NVD entry notes a high-severity, network-based issue (CVSS v3.1: 8.8; privileges required: LOW; user interaction: NONE; impact: HIGH across confidentiality, integrity, availability). OpenVAS-derived entrie...

8.8CVSS8.6AI score0.02967EPSS
CVE
CVE
added 2023/06/13 11:26 p.m.146 views

CVE-2023-29352

CVE-2023-29352 is a Windows Remote Desktop Security Feature Bypass vulnerability. The CVSS 3.1 vector indicates network access with low attack complexity, no privileges, and user interaction required, resulting in potential integrity impact (I: High) but no confidentiality or availability impact ...

6.5CVSS7.8AI score0.01167EPSS
CVE
CVE
added 2025/03/11 4:59 p.m.143 views

CVE-2025-26645

CVE-2025-26645 affects the Windows Remote Desktop Client. The vulnerability is a relative path traversal in the Remote Desktop Client that allows an unauthenticated attacker to execute code over the network. According to the published metrics, the exploit requires network access with low attack c...

8.8CVSS8.8AI score0.03227EPSS
CVE
CVE
added 2021/11/10 12:46 a.m.142 views

CVE-2021-38665

CVE-2021-38665 is described as a Remote Desktop Protocol Client Information Disclosure Vulnerability. The provided records show CVSSv3.1 base score 6.5 (NETWORK, LOW ATTACK COMPLEXITY, NONE PRIVILEGES, UI: REQUIRED) and a CNA-provided score of 7.4 (HIGH confidentiality impact). Exploitation detai...

7.4CVSS7.8AI score0.06202EPSS
CVE
CVE
added 2022/12/13 12:0 a.m.129 views

CVE-2022-41121

CVE-2022-41121 is a Windows Graphics Component Elevation of Privilege vulnerability with a CVSS v3.1 base score of 7.8 (HIGH), requiring LOCAL access with LOW privileges and no user interaction. The available descriptions identify the affected component as Windows Graphics Component but provide n...

7.8CVSS7.9AI score0.0105EPSS
CVE
CVE
added 2025/04/08 5:24 p.m.123 views

CVE-2025-27487

CVE-2025-27487 is a heap-based buffer overflow in Windows Remote Desktop Client that allows an authenticated attacker to execute code over the network (CVSSv3.1: 8.0 HIGH; AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H). Connected sources confirm this vulnerability and reference remote desktop RCE updates. ...

8CVSS8.1AI score0.01377EPSS
CVE
CVE
added 2026/06/09 5:6 p.m.99 views

CVE-2026-42985

CVE-2026-42985 is described in connected sources as a heap-based buffer overflow in the Remote Desktop Client that allows an unauthenticated attacker to execute code over the network. The initial and connected docs provide the vulnerability description and a high CVSS score (8.8, HIGH) with netwo...

8.8CVSS7.3AI score0.00981EPSS
CVE
CVE
added 2025/07/08 4:57 p.m.92 views

CVE-2025-48817

Technical details about CVE-2025-48817 are not publicly provided in the supplied documents. No vendor/product/versions or mitigations are disclosed here. Monitor official advisories for updates.

8.8CVSS7AI score0.00935EPSS
CVE
CVE
added 2025/06/10 5:2 p.m.90 views

CVE-2025-32715

CVE-2025-32715 is a vulnerability in the Windows Remote Desktop Client described as an out-of-bounds read that can lead to information disclosure . The connected NCSC advisory lists CVSS v3.1/6.50 with an impact of Access to sensitive data . Exploitation details, affected product versions, and sp...

6.5CVSS6.2AI score0.01241EPSS
CVE
CVE
added 2026/04/14 4:57 p.m.63 views

CVE-2026-32157

CVE-2026-32157 affects the Remote Desktop Client and enables remote code execution over the network. The CVSSv3.1 score is 8.8 (HIGH), with confidentiality, integrity, and availability all rated High. Attack requires network access and user interaction, with privilegesN/A and exploitation current...

8.8CVSS6AI score0.00778EPSS
CVE
CVE
added 2026/06/09 5:6 p.m.58 views

CVE-2026-42909

CVE-2026-42909 involves a heap-based buffer overflow in the Remote Desktop Client that enables a remote attacker to execute code over the network. The vulnerability arises from improper handling of data during remote desktop operations, leading to memory corruption. The CVSS-3.1 vector (AV:N/AC:H...

7.5CVSS7.4AI score0.00397EPSS
CVE
CVE
added 2025/10/14 5:1 p.m.48 views

CVE-2025-58718

CVE-2025-58718 is a use-after-free in the Windows Remote Desktop Client that allows a network-based, unauthenticated attacker to execute code on the affected system. CVSSv3.1 shows AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H with a base score of 8.8 (HIGH); exploitation requires user interaction. Connect...

8.8CVSS7.2AI score0.00574EPSS
CVE
CVE
added 2026/06/09 5:6 p.m.43 views

CVE-2026-42913

The CVE-2026-42913 entry describes a heap-based buffer overflow in the Remote Desktop Client leading to remote code execution over a network with High severity (CVSS 3.1: AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). Affected component is the Remote Desktop Client; underlying cause is a heap-based overfl...

7.5CVSS7.4AI score0.00473EPSS
CVE
CVE
added 2026/06/09 5:6 p.m.42 views

CVE-2026-44799

This CVE (CVE-2026-44799) describes a heap-based buffer overflow in the Remote Desktop Client that allows an unauthorized attacker to execute code remotely over a network . The connected records corroborate a network-based, remote code execution vulnerability affecting the Remote Desktop Client, ...

7.5CVSS6AI score0.00461EPSS
CVE
CVE
added 2026/06/09 5:6 p.m.39 views

CVE-2026-44801

CVE-2026-44801 = heap-based buffer overflow in Remote Desktop Client enabling a remote code execution by an unauthenticated attacker over the network. Root cause: heap overflow; impact: remote execution of code. Affected software/version details are not provided in the documents. No exploit statu...

7.5CVSS7.2AI score0.00461EPSS
CVE
CVE
added 2026/06/09 5:4 p.m.38 views

CVE-2026-45639

The CVE-2026-45639 entry relates to an out-of-bounds read in Windows Remote Desktop Protocol (RDP). The underlying issue enables an unauthenticated, network-based attacker to disclose information over the network without user interaction. The CVSS 3.1 vector is CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:...

7.5CVSS5.4AI score0.0087EPSS