Security News > 2019 > May > UPDATE NOW! Critical, remote, ‘wormable’ Windows vulnerability

UPDATE NOW! Critical, remote, ‘wormable’ Windows vulnerability

2019-05-15 12:09

Microsoft has fixed an RDP vulnerability that can be exploited remotely, without authentication and used to run arbitrary code.

News URL

https://nakedsecurity.sophos.com/2019/05/15/update-now-critical-remote-wormable-windows-vulnerability/

#critical #vulnerability #windows

Related news

Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise (source)
Microsoft Patches 125 Flaws Including Actively Exploited Windows CLFS Vulnerability (source)
PipeMagic Trojan Exploits Windows Zero-Day Vulnerability to Deploy Ransomware (source)
WhatsApp vulnerability could be used to infect Windows users with malware (CVE-2025-30401) (source)
Microsoft: Windows CLFS Vulnerability Could Lead to ‘Widespread Deployment and Detonation of Ransomware’ (source)
Gladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE Vulnerability (source)
Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence (source)
Critical Erlang/OTP SSH Vulnerability (CVSS 10.0) Allows Unauthenticated Code Execution (source)
Windows NTLM vulnerability exploited in multiple attack campaigns (CVE-2025-24054) (source)
Critical Commvault RCE vulnerability fixed, PoC available (CVE-2025-34028) (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.