Tag
#Windows Remote Desktop
CVE-2022-24503: Remote Desktop Protocol Client Information Disclosure Vulnerability
**What information could be disclosed through this vulnerability?** An attacker could potentially read small portions of heap memory.
CVE-2022-23285: Remote Desktop Client Remote Code Execution Vulnerability
**How could an attacker exploit this vulnerability?** In the case of a Remote Desktop connection, an attacker with control of a Remote Desktop Server could trigger a remote code execution (RCE) on the RDP client machine when a victim connects to the attacking server with the vulnerable Remote Desktop Client.
CVE-2022-21964: Remote Desktop Licensing Diagnoser Information Disclosure Vulnerability
**What type of information could be disclosed by this vulnerability?** An attacker that successfully exploited this vulnerability could recover cleartext passwords from memory.