Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka ‘Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability’. This CVE ID is unique from CVE-2020-0610. It has a base score of 9.8 in severity.

Patch: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0609

Known Affected Software Configurations Switch to CPE 2.2

Configuration 1 ( hide )

 cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
     Show Matching CPE(s) 
 cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
     Show Matching CPE(s) 
 cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
     Show Matching CPE(s) 
 cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
     Show Matching CPE(s) 

Leave a Reply

Your email address will not be published. Required fields are marked *