A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

microsoft / remote_desktop_client+20

Network

Published Jul 15, 2019

CVE-2025-27487

HIGH8.0

Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code over a network.

microsoft / remote_desktop_client+20

Network

Published Apr 8, 2025

CVE-2022-41121

HIGH7.8

Windows Graphics Component Elevation of Privilege Vulnerability

microsoft / powershell+22

Local

Published Dec 13, 2022

CVE-2021-38665

HIGH7.4

Remote Desktop Protocol Client Information Disclosure Vulnerability

microsoft / remote_desktop_client+18

Network

Published Nov 10, 2021

CVE-2025-32715

MEDIUM6.5

Out-of-bounds read in Remote Desktop Client allows an unauthorized attacker to disclose information over a network.

microsoft / remote_desktop_client+20

Network

Published Jun 10, 2025

CVE-2022-22015

MEDIUM6.5

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability

microsoft / remote_desktop_client+31

Network

Published May 10, 2022

CVE-2023-29352

MEDIUM6.5

Windows Remote Desktop Security Feature Bypass Vulnerability

microsoft / remote_desktop_client+7

Network

Published Jun 14, 2023

CVE-2023-28267

MEDIUM6.5

Remote Desktop Protocol Client Information Disclosure Vulnerability

microsoft / remote_desktop_client+14

Network

Published Apr 11, 2023

CVE-2022-26940

MEDIUM6.5

Remote Desktop Protocol Client Information Disclosure Vulnerability

microsoft / remote_desktop_client+3

Network

Published May 10, 2022

CVE-2022-24503

MEDIUM5.4

Remote Desktop Protocol Client Information Disclosure Vulnerability

microsoft / remote_desktop_client+19

Network

Published Mar 9, 2022