Remote Code Execution Flaw in Microsoft Remote Desktop Client
CVE-2025-48817
Key Information:
- Vendor
Microsoft
- Status
- Vendor
- CVE Published:
- 8 July 2025
What is CVE-2025-48817?
CVE-2025-48817 is a critical vulnerability affecting the Microsoft Remote Desktop Client, which is widely used for providing remote access to Windows environments. This vulnerability stems from a relative path traversal issue that allows an unauthorized attacker to execute arbitrary code over a network. By exploiting this flaw, attackers could potentially gain control over systems using the Remote Desktop Client, compromising sensitive data, and disrupting organizational operations. The severity of this vulnerability arises from the common use of Remote Desktop services in both corporate and personal networks, making it a significant risk factor for many organizations.
Potential impact of CVE-2025-48817
-
Unauthorized Code Execution: The most severe consequence of CVE-2025-48817 is the ability for attackers to execute malicious code remotely. This could lead to complete system compromise, enabling attackers to install malware, create backdoors, or steal sensitive information.
-
Data Breaches: Organizations utilizing the Remote Desktop Client could suffer data breaches as attackers access confidential information. This could result in severe reputational damage and potential legal consequences due to the loss of client or corporate data.
-
Operational Disruption: If exploited, this vulnerability can lead to significant operational disruptions. Attackers gaining control of remote desktop sessions can interfere with business processes, leading to downtime, loss of productivity, and potential financial losses.
Affected Version(s)
Remote Desktop client for Windows Desktop Unknown 1.2.0.0 < 1.2.6353.0
Windows 10 Version 1507 32-bit Systems 10.0.10240.0 < 10.0.10240.21073
Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.8246