Heap-based Buffer Overflow in Remote Desktop Client from Microsoft
CVE-2025-27487
8HIGH
Key Information:
- Vendor
Microsoft
- Status
- Vendor
- CVE Published:
- 8 April 2025
What is CVE-2025-27487?
A heap-based buffer overflow vulnerability exists in Remote Desktop Client, enabling an authorized attacker to execute arbitrary code remotely over a network connection. This flaw may lead to unauthorized actions or data breaches if exploited, allowing attackers to manipulate the application's memory allocation.
Affected Version(s)
Remote Desktop client for Windows Desktop Unknown 1.2.0.0 < 1.2.6081.0
Windows 10 Version 1507 32-bit Systems 10.0.10240.0 < 10.0.10240.20978
Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.7969