Remote Desktop Protocol
by Microsoft
CVEs (13)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-1108 | 0.02 | — | 0.23 | Jul 29, 2019 | An information disclosure vulnerability exists when the Windows RDP client improperly discloses the contents of its memory, aka 'Remote Desktop Protocol Client Information Disclosure Vulnerability'. | |||
| CVE-2022-26940 | 0.01 | — | 0.16 | May 10, 2022 | Remote Desktop Protocol Client Information Disclosure Vulnerability | |||
| CVE-2022-21893 | 0.01 | — | 0.13 | Jan 11, 2022 | Remote Desktop Protocol Remote Code Execution Vulnerability | |||
| CVE-2020-16927 | 0.01 | — | 0.19 | Oct 16, 2020 | A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could cause the RDP service on the target system… | |||
| CVE-2020-16896 | 0.01 | — | 0.11 | Oct 16, 2020 | An information disclosure vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could obtain information to further… | |||
| CVE-2019-1453 | 0.01 | — | 0.10 | Dec 10, 2019 | A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability'. | |||
| CVE-2019-1223 | 0.01 | — | 0.18 | Aug 14, 2019 | A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could cause the RDP service on the target system to… | |||
| CVE-2023-28267 | 0.00 | — | 0.03 | Apr 11, 2023 | Remote Desktop Protocol Client Information Disclosure Vulnerability | |||
| CVE-2022-24503 | 0.00 | — | 0.02 | Mar 9, 2022 | Remote Desktop Protocol Client Information Disclosure Vulnerability | |||
| CVE-2021-1674 | 0.00 | — | 0.04 | Jan 12, 2021 | Windows Remote Desktop Protocol Core Security Feature Bypass Vulnerability | |||
| CVE-2020-17000 | 0.00 | — | 0.00 | Nov 11, 2020 | Remote Desktop Protocol Client Information Disclosure Vulnerability | |||
| CVE-2019-1489 | 0.00 | — | 0.06 | Dec 10, 2019 | An information disclosure vulnerability exists when the Windows Remote Desktop Protocol (RDP) fails to properly handle objects in memory, aka 'Remote Desktop Protocol Information Disclosure Vulnerability'. | |||
| CVE-2005-1794 | Hig | 0.00 | 7.4 | 0.06 | Jun 1, 2005 | Microsoft Terminal Server using Remote Desktop Protocol (RDP) 5.2 stores an RSA private key in mstlsapi.dll and uses it to sign a certificate, which allows remote attackers to spoof public keys of legitimate servers and conduct man-in-the-middle attacks. |
- CVE-2019-1108Jul 29, 2019risk 0.02cvss —epss 0.23
An information disclosure vulnerability exists when the Windows RDP client improperly discloses the contents of its memory, aka 'Remote Desktop Protocol Client Information Disclosure Vulnerability'.
- CVE-2022-26940May 10, 2022risk 0.01cvss —epss 0.16
Remote Desktop Protocol Client Information Disclosure Vulnerability
- CVE-2022-21893Jan 11, 2022risk 0.01cvss —epss 0.13
Remote Desktop Protocol Remote Code Execution Vulnerability
- CVE-2020-16927Oct 16, 2020risk 0.01cvss —epss 0.19
A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could cause the RDP service on the target system…
- CVE-2020-16896Oct 16, 2020risk 0.01cvss —epss 0.11
An information disclosure vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could obtain information to further…
- CVE-2019-1453Dec 10, 2019risk 0.01cvss —epss 0.10
A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability'.
- CVE-2019-1223Aug 14, 2019risk 0.01cvss —epss 0.18
A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could cause the RDP service on the target system to…
- CVE-2023-28267Apr 11, 2023risk 0.00cvss —epss 0.03
Remote Desktop Protocol Client Information Disclosure Vulnerability
- CVE-2022-24503Mar 9, 2022risk 0.00cvss —epss 0.02
Remote Desktop Protocol Client Information Disclosure Vulnerability
- CVE-2021-1674Jan 12, 2021risk 0.00cvss —epss 0.04
Windows Remote Desktop Protocol Core Security Feature Bypass Vulnerability
- CVE-2020-17000Nov 11, 2020risk 0.00cvss —epss 0.00
Remote Desktop Protocol Client Information Disclosure Vulnerability
- CVE-2019-1489Dec 10, 2019risk 0.00cvss —epss 0.06
An information disclosure vulnerability exists when the Windows Remote Desktop Protocol (RDP) fails to properly handle objects in memory, aka 'Remote Desktop Protocol Information Disclosure Vulnerability'.
- risk 0.00cvss 7.4epss 0.06
Microsoft Terminal Server using Remote Desktop Protocol (RDP) 5.2 stores an RSA private key in mstlsapi.dll and uses it to sign a certificate, which allows remote attackers to spoof public keys of legitimate servers and conduct man-in-the-middle attacks.