Microsoft Remote Desktop Services Remote Code Execution Vulnerability

Description

Microsoft Remote Desktop Services, formerly known as Terminal Service, contains an unspecified vulnerability that allows an unauthenticated attacker to connect to the target system using RDP and send specially crafted requests. Successful exploitation allows for remote code execution. The vulnerability is also known under the moniker of BlueKeep.

Required Action

Apply updates per vendor instructions.

References

• https://nvd.nist.gov/vuln/detail/CVE-2019-0708

Additional Information

Catalog Version

2025.01.24

Catalog Released

Jan. 24, 2025

Days Until Due

0 days

Last Updated

4 months, 2 weeks ago