Description
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
Reserved 2024-06-11 | Published 2024-07-09 | Updated 2025-03-11 | Assigner
microsoftCRITICAL: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Problem types
CWE-122: Heap-based Buffer Overflow
Product status
10.0.17763.0 before 10.0.17763.6054
affected
10.0.17763.0 before 10.0.17763.6054
affected
10.0.20348.0 before 10.0.20348.2582
affected
10.0.25398.0 before 10.0.25398.1009
affected
10.0.14393.0 before 10.0.14393.7159
affected
10.0.14393.0 before 10.0.14393.7159
affected
6.0.6003.0 before 6.0.6003.22769
affected
6.0.6003.0 before 6.0.6003.22769
affected
6.0.6003.0 before 6.0.6003.22769
affected
6.1.7601.0 before 6.1.7601.27219
affected
6.1.7601.0 before 6.1.7601.27219
affected
6.2.9200.0 before 6.2.9200.24975
affected
6.2.9200.0 before 6.2.9200.24975
affected
6.3.9600.0 before 6.3.9600.22074
affected
6.3.9600.0 before 6.3.9600.22074
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38077 (Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability) vendor-advisory
cve.org (CVE-2024-38077)
nvd.nist.gov (CVE-2024-38077)
Download JSON