Remote Desktop Microsoft Remote Desktop

Do you want an email whenever new security vulnerabilities are reported in Microsoft Remote Desktop?

Recent Microsoft Remote Desktop Security Advisories

Advisory Title Published
CVE-2022-26940 Remote Desktop Protocol Client Information Disclosure Vulnerability May 10, 2022
CVE-2022-22015 Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability May 10, 2022
CVE-2022-22017 Remote Desktop Client Remote Code Execution Vulnerability May 10, 2022
CVE-2022-24533 Remote Desktop Protocol Remote Code Execution Vulnerability April 12, 2022
CVE-2022-21990 Remote Desktop Client Remote Code Execution Vulnerability March 8, 2022
CVE-2022-24503 Remote Desktop Protocol Client Information Disclosure Vulnerability March 8, 2022
CVE-2022-23285 Remote Desktop Client Remote Code Execution Vulnerability March 8, 2022
CVE-2022-21851 Remote Desktop Client Remote Code Execution Vulnerability January 11, 2022
CVE-2022-21893 Remote Desktop Protocol Remote Code Execution Vulnerability January 11, 2022
CVE-2022-21964 Remote Desktop Licensing Diagnoser Information Disclosure Vulnerability January 11, 2022

By the Year

In 2023 there have been 0 vulnerabilities in Microsoft Remote Desktop . Last year Remote Desktop had 5 security vulnerabilities published. Right now, Remote Desktop is on track to have less security vulnerabilities in 2023 than it did last year.

Year Vulnerabilities Average Score
2023 0 0.00
2022 5 6.98
2021 3 8.03
2020 1 7.80
2019 1 8.00
2018 0 0.00

It may take a day or so for new Remote Desktop vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Remote Desktop Security Vulnerabilities

Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2022-41121 7.8 - High - December 13, 2022

Windows Graphics Component Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-44671, CVE-2022-44680, CVE-2022-44697.

Remote Desktop Client Remote Code Execution Vulnerability.

CVE-2022-22017 8.8 - High - May 10, 2022

Remote Desktop Client Remote Code Execution Vulnerability.

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability.

CVE-2022-22015 6.5 - Medium - May 10, 2022

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Remote Desktop Protocol Client Information Disclosure Vulnerability.

CVE-2022-26940 6.5 - Medium - May 10, 2022

Remote Desktop Protocol Client Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Remote Desktop Protocol Client Information Disclosure Vulnerability.

CVE-2022-24503 5.3 - Medium - March 09, 2022

Remote Desktop Protocol Client Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Remote Desktop Protocol Client Information Disclosure Vulnerability

CVE-2021-38665 6.5 - Medium - November 10, 2021

Remote Desktop Protocol Client Information Disclosure Vulnerability

Remote Desktop Client Remote Code Execution Vulnerability

CVE-2021-34535 8.8 - High - August 12, 2021

Remote Desktop Client Remote Code Execution Vulnerability

Windows Remote Desktop Security Feature Bypass Vulnerability

CVE-2021-1669 8.8 - High - January 12, 2021

Windows Remote Desktop Security Feature Bypass Vulnerability

An elevation of privilege vulnerability exists in Remote Desktop App for Mac in the way it

CVE-2020-0919 7.8 - High - April 15, 2020

An elevation of privilege vulnerability exists in Remote Desktop App for Mac in the way it allows an attacker to load unsigned binaries, aka 'Microsoft Remote Desktop App for Mac Elevation of Privilege Vulnerability'.

Improper Privilege Management

A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection

CVE-2019-0887 8 - High - July 15, 2019

A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

Directory traversal

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Microsoft Windows 11 21h2 or by Microsoft? Click the Watch button to subscribe.

Microsoft
Vendor

subscribe