Microsoft Remote Desktop

Do you want an email whenever new security vulnerabilities are reported in Microsoft Remote Desktop?

Recent Microsoft Remote Desktop Security Advisories

Advisory	Title	Published
CVE-2022-26940	Remote Desktop Protocol Client Information Disclosure Vulnerability	May 10, 2022
CVE-2022-22015	Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability	May 10, 2022
CVE-2022-22017	Remote Desktop Client Remote Code Execution Vulnerability	May 10, 2022
CVE-2022-24533	Remote Desktop Protocol Remote Code Execution Vulnerability	April 12, 2022
CVE-2022-21990	Remote Desktop Client Remote Code Execution Vulnerability	March 8, 2022
CVE-2022-24503	Remote Desktop Protocol Client Information Disclosure Vulnerability	March 8, 2022
CVE-2022-23285	Remote Desktop Client Remote Code Execution Vulnerability	March 8, 2022
CVE-2022-21851	Remote Desktop Client Remote Code Execution Vulnerability	January 11, 2022
CVE-2022-21893	Remote Desktop Protocol Remote Code Execution Vulnerability	January 11, 2022
CVE-2022-21964	Remote Desktop Licensing Diagnoser Information Disclosure Vulnerability	January 11, 2022

By the Year

In 2022 there have been 4 vulnerabilities in Microsoft Remote Desktop with an average score of 6.8 out of ten. Last year Remote Desktop had 3 security vulnerabilities published. That is, 1 more vulnerability have already been reported in 2022 as compared to last year. Last year, the average CVE base score was greater by 1.26

Year	Vulnerabilities	Average Score
2022	4	6.78
2021	3	8.03
2020	1	7.80
2019	0	0.00
2018	0	0.00

It may take a day or so for new Remote Desktop vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Remote Desktop Security Vulnerabilities

Remote Desktop Client Remote Code Execution Vulnerability.

CVE-2022-22017 8.8 - High - May 10, 2022

Remote Desktop Client Remote Code Execution Vulnerability.

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability.

CVE-2022-22015 6.5 - Medium - May 10, 2022

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Remote Desktop Protocol Client Information Disclosure Vulnerability.

CVE-2022-26940 6.5 - Medium - May 10, 2022

Remote Desktop Protocol Client Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Remote Desktop Protocol Client Information Disclosure Vulnerability.

CVE-2022-24503 5.3 - Medium - March 09, 2022

Remote Desktop Protocol Client Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Remote Desktop Protocol Client Information Disclosure Vulnerability

CVE-2021-38665 6.5 - Medium - November 10, 2021

Remote Desktop Protocol Client Information Disclosure Vulnerability

Remote Desktop Client Remote Code Execution Vulnerability

CVE-2021-34535 8.8 - High - August 12, 2021

Remote Desktop Client Remote Code Execution Vulnerability

Windows Remote Desktop Security Feature Bypass Vulnerability

CVE-2021-1669 8.8 - High - January 12, 2021

Windows Remote Desktop Security Feature Bypass Vulnerability

AuthZ

An elevation of privilege vulnerability exists in Remote Desktop App for Mac in the way it

CVE-2020-0919 7.8 - High - April 15, 2020

An elevation of privilege vulnerability exists in Remote Desktop App for Mac in the way it allows an attacker to load unsigned binaries, aka 'Microsoft Remote Desktop App for Mac Elevation of Privilege Vulnerability'.

Improper Privilege Management

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Microsoft Remote Desktop or by Microsoft? Click the Watch button to subscribe.

Microsoft
Vendor

Microsoft Remote Desktop
Product

Microsoft Remote Desktop

Recent Microsoft Remote Desktop Security Advisories

By the Year

Recent Microsoft Remote Desktop Security Vulnerabilities

Remote Desktop Client Remote Code Execution Vulnerability. CVE-2022-22017 8.8 - High - May 10, 2022

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability. CVE-2022-22015 6.5 - Medium - May 10, 2022

Remote Desktop Protocol Client Information Disclosure Vulnerability. CVE-2022-26940 6.5 - Medium - May 10, 2022

Remote Desktop Protocol Client Information Disclosure Vulnerability. CVE-2022-24503 5.3 - Medium - March 09, 2022

Remote Desktop Protocol Client Information Disclosure Vulnerability CVE-2021-38665 6.5 - Medium - November 10, 2021

Remote Desktop Client Remote Code Execution Vulnerability CVE-2021-34535 8.8 - High - August 12, 2021

Windows Remote Desktop Security Feature Bypass Vulnerability CVE-2021-1669 8.8 - High - January 12, 2021

An elevation of privilege vulnerability exists in Remote Desktop App for Mac in the way it CVE-2020-0919 7.8 - High - April 15, 2020

Stay on top of Security Vulnerabilities

Microsoft Vendor

Microsoft Remote DesktopProduct

Remote Desktop Client Remote Code Execution Vulnerability.

CVE-2022-22017 8.8 - High - May 10, 2022

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability.

CVE-2022-22015 6.5 - Medium - May 10, 2022

Remote Desktop Protocol Client Information Disclosure Vulnerability.

CVE-2022-26940 6.5 - Medium - May 10, 2022

Remote Desktop Protocol Client Information Disclosure Vulnerability.

CVE-2022-24503 5.3 - Medium - March 09, 2022

Remote Desktop Protocol Client Information Disclosure Vulnerability

CVE-2021-38665 6.5 - Medium - November 10, 2021

Remote Desktop Client Remote Code Execution Vulnerability

CVE-2021-34535 8.8 - High - August 12, 2021

Windows Remote Desktop Security Feature Bypass Vulnerability

CVE-2021-1669 8.8 - High - January 12, 2021

An elevation of privilege vulnerability exists in Remote Desktop App for Mac in the way it

CVE-2020-0919 7.8 - High - April 15, 2020

Microsoft
Vendor

Microsoft Remote Desktop
Product