Vulnerabilities > CVE-2022-24503 - Unspecified vulnerability in Microsoft products

CVSS 5.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

LOW

network

low complexity

microsoft

NVD

Published: 2022-03-09

Updated: 2023-08-08

Summary

Remote Desktop Protocol Client Information Disclosure Vulnerability

Vulnerable Configurations

Part	Description	Count
OS	Microsoft Microsoft Windows RT 8.1 * Microsoft Windows Server 2012 R2 Microsoft Windows Server 2012 - Microsoft Windows 10 1607 Microsoft Windows 10 * Microsoft Windows 10 1809 Microsoft Windows 10 1909 Microsoft Windows 10 20H2 Microsoft Windows 10 21H1 Microsoft Windows 10 21H2 Microsoft Windows Server 2016 - Microsoft Windows 8.1 * Microsoft Windows Server 2008 R2 Microsoft Windows 7 - Microsoft Windows Server 2019 - Microsoft Windows Server 2022 - Microsoft Windows 11 - Microsoft Windows Server 20H2	19
Application	Microsoft Microsoft Remote Desktop - Microsoft Remote Desktop 1.2.247 Microsoft Remote Desktop 1.2.431 Microsoft Remote Desktop 1.2.535 Microsoft Remote Desktop 1.2.605 Microsoft Remote Desktop 1.2.675 Microsoft Remote Desktop 1.2.790 Microsoft Remote Desktop 1.2.945 Microsoft Remote Desktop 1.2.1026 Microsoft Remote Desktop 1.2.1104 Microsoft Remote Desktop 1.2.1186 Microsoft Remote Desktop 1.2.1275 Microsoft Remote Desktop 1.2.1364 Microsoft Remote Desktop 1.2.1446 Microsoft Remote Desktop 1.2.1525 Microsoft Remote Desktop 1.2.1672 Microsoft Remote Desktop 1.2.1755 Microsoft Remote Desktop 1.2.1844 Microsoft Remote Desktop 1.2.1954 Microsoft Remote Desktop 1.2.2061 Microsoft Remote Desktop 1.2.2130 Microsoft Remote Desktop 1.2.2222 Microsoft Remote Desktop 1.2.2223 Microsoft Remote Desktop 1.2.2322 Microsoft Remote Desktop 1.2.2459 Microsoft Remote Desktop 1.2.2600 Microsoft Remote Desktop 1.2.2606 Microsoft Remote Desktop 1.2.2677 Microsoft Remote Desktop 1.2.2687 Microsoft Remote Desktop 1.2.2688 Microsoft Remote Desktop 1.2.2691 Microsoft Remote Desktop 1.2.2851 Microsoft Remote Desktop 1.2.2860 Microsoft Remote Desktop 1.2.2924	34

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24503