CVE-2022-26940

MEDIUM6.5JSON export Create alert

Description

Remote Desktop Protocol Client Information Disclosure Vulnerability

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

E

Unchanged

RL

O

RC

Changed

Affected products

Microsoft / Remote Desktop client for Windows Desktop1.2.0.0 – 1.2.3130
Microsoft / Windows 11 version 21H210.0.0 – 10.0.22000.675
Microsoft / Windows Server 202210.0.20348.0 – 10.0.20348.707

References

VENDOR_ADVISORYhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26940