PT-2022-3500 · Microsoft · Windows Remote Desktop Protocol Client+1

Bee13Oy

Published

2022-05-10

Updated

2025-01-02

CVE-2022-26940

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Windows Remote Desktop Protocol Client (affected versions not specified)

Description The vulnerability is related to the Remote Desktop Protocol Client in the Windows operating system and involves the disclosure of information in an error data area. Exploitation of this issue may allow a remote attacker to disclose protected information. The vulnerability allows attackers to obtain sensitive information and affect the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exposure of Resource to Wrong Sphere

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-668

Related Identifiers

BDU:2022-04281

CVE-2022-26940

Affected Products

Windows

Windows Remote Desktop Protocol Client

PT-2022-3500 · Microsoft · Windows Remote Desktop Protocol Client+1

CVE-2022-26940

Weakness Enumeration

Related Identifiers

Affected Products

References · 7