Remote Code Execution Vulnerability Affects Microsoft Remote Desktop Protocol Server
CVE-2024-43582

8.1HIGH

Key Information:

Vendor

Microsoft
Status
Windows 10 Version 1809
Windows Server 2019
Windows Server 2019 (server Core Installation)
Windows Server 2022
Vendor
CVE Published:
8 October 2024

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸฃ EPSS 24%

What is CVE-2024-43582?

The Remote Desktop Protocol Server contains a vulnerability that could allow an attacker to execute arbitrary code on a system remotely. Exploitation of this weakness may enable unauthorized actions, including but not limited to, access to sensitive data or manipulation of system configurations. This vulnerability affects various versions of the Remote Desktop Protocol Server and poses a serious threat to organizations utilizing these services. It is crucial for users to apply the necessary updates and security patches as specified by Microsoft to mitigate the risks associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.6414

Windows 10 Version 21H2 32-bit Systems 10.0.19043.0 < 10.0.19044.5011

Windows 10 Version 22H2 x64-based Systems 10.0.19045.0 < 10.0.19045.5011

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...
vendor-advisory

EPSS Score

24% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

JSON
.