Microsoft Remote Desktop
Recent Microsoft Remote Desktop Security Advisories
| Advisory | Title | Published |
|---|---|---|
| CVE-2023-29348 | Windows Remote Desktop Gateway (RD Gateway) Information Disclosure Vulnerability | October 10, 2023 |
| CVE-2023-35332 | Windows Remote Desktop Protocol Security Feature Bypass | July 11, 2023 |
| CVE-2023-32043 | Windows Remote Desktop Security Feature Bypass Vulnerability | July 11, 2023 |
| CVE-2023-35352 | Windows Remote Desktop Security Feature Bypass Vulnerability | July 11, 2023 |
| CVE-2023-29362 | Remote Desktop Client Remote Code Execution Vulnerability | June 13, 2023 |
| CVE-2023-29352 | Windows Remote Desktop Security Feature Bypass Vulnerability | June 13, 2023 |
| CVE-2023-24905 | Remote Desktop Client Remote Code Execution Vulnerability | May 9, 2023 |
| CVE-2023-28290 | Microsoft Remote Desktop app for Windows Information Disclosure Vulnerability | May 9, 2023 |
| CVE-2023-28267 | Remote Desktop Protocol Client Information Disclosure Vulnerability | April 11, 2023 |
| CVE-2022-26940 | Remote Desktop Protocol Client Information Disclosure Vulnerability | May 10, 2022 |
By the Year
In 2023 there have been 4 vulnerabilities in Microsoft Remote Desktop with an average score of 6.8 out of ten. Last year Remote Desktop had 5 security vulnerabilities published. Right now, Remote Desktop is on track to have less security vulnerabilities in 2023 than it did last year. Last year, the average CVE base score was greater by 0.23
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 4 | 6.78 |
| 2022 | 5 | 7.00 |
| 2021 | 3 | 8.03 |
| 2020 | 1 | 7.80 |
| 2019 | 1 | 8.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Remote Desktop vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Remote Desktop Security Vulnerabilities
Remote Desktop Client Remote Code Execution Vulnerability
CVE-2023-29362
8.8 - High
- June 14, 2023
Remote Desktop Client Remote Code Execution Vulnerability
Windows Remote Desktop Security Feature Bypass Vulnerability
CVE-2023-29352
6.5 - Medium
- June 14, 2023
Windows Remote Desktop Security Feature Bypass Vulnerability
Microsoft Remote Desktop app for Windows Information Disclosure Vulnerability
CVE-2023-28290
5.3 - Medium
- May 09, 2023
Microsoft Remote Desktop app for Windows Information Disclosure Vulnerability
Remote Desktop Protocol Client Information Disclosure Vulnerability
CVE-2023-28267
6.5 - Medium
- April 11, 2023
Remote Desktop Protocol Client Information Disclosure Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2022-41121
7.8 - High
- December 13, 2022
Windows Graphics Component Elevation of Privilege Vulnerability
Remote Desktop Client Remote Code Execution Vulnerability.
CVE-2022-22017
8.8 - High
- May 10, 2022
Remote Desktop Client Remote Code Execution Vulnerability.
Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability.
CVE-2022-22015
6.5 - Medium
- May 10, 2022
Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability.
Remote Desktop Protocol Client Information Disclosure Vulnerability.
CVE-2022-26940
6.5 - Medium
- May 10, 2022
Remote Desktop Protocol Client Information Disclosure Vulnerability.
Remote Desktop Protocol Client Information Disclosure Vulnerability
CVE-2022-24503
5.4 - Medium
- March 09, 2022
Remote Desktop Protocol Client Information Disclosure Vulnerability
Remote Desktop Protocol Client Information Disclosure Vulnerability
CVE-2021-38665
6.5 - Medium
- November 10, 2021
Remote Desktop Protocol Client Information Disclosure Vulnerability
Remote Desktop Client Remote Code Execution Vulnerability
CVE-2021-34535
8.8 - High
- August 12, 2021
Remote Desktop Client Remote Code Execution Vulnerability
Windows Remote Desktop Security Feature Bypass Vulnerability
CVE-2021-1669
8.8 - High
- January 12, 2021
Windows Remote Desktop Security Feature Bypass Vulnerability
An elevation of privilege vulnerability exists in Remote Desktop App for Mac in the way it
CVE-2020-0919
7.8 - High
- April 15, 2020
An elevation of privilege vulnerability exists in Remote Desktop App for Mac in the way it allows an attacker to load unsigned binaries, aka 'Microsoft Remote Desktop App for Mac Elevation of Privilege Vulnerability'.
Improper Privilege Management
A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection
CVE-2019-0887
8 - High
- July 15, 2019
A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
Directory traversal
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Windows 11 21h2 or by Microsoft? Click the Watch button to subscribe.
