Information Disclosure Vulnerability in Windows Remote Desktop Client
CVE-2026-58546

6.5MEDIUM

What is CVE-2026-58546?

This vulnerability in the Windows Remote Desktop Client arises from the use of an uninitialized resource, which can be exploited by unauthorized attackers. By leveraging this flaw, attackers may gain unauthorized access to sensitive information being transmitted over a network. It is crucial for users and organizations to ensure their systems are updated and apply the necessary patches provided to mitigate this risk.

Affected Version(s)

Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.9339

Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.9020

Windows 10 Version 21H2 32-bit Systems 10.0.19044.0 < 10.0.19044.7548

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.