CVE-2025-50171

Опубликовано: 12 авг. 2025

Источник: msrc

CVSS3: 9.1

EPSS Низкий

Описание

Remote Desktop Spoofing Vulnerability

Missing authorization in Remote Desktop Server allows an unauthorized attacker to perform spoofing over a network.

Обновления

Продукт	Статья	Обновление
Windows Server 2022	5063880 5063812	SecurityUpdate SecurityHotpatchUpdate
Windows Server 2022 (Server Core installation)	5063880 5063812	SecurityUpdate SecurityHotpatchUpdate
Windows 10 Version 21H2 for 32-bit Systems	5063709	SecurityUpdate
Windows 10 Version 21H2 for ARM64-based Systems	5063709	SecurityUpdate
Windows 10 Version 21H2 for x64-based Systems	5063709	SecurityUpdate
Windows 11 Version 22H2 for x64-based Systems	5063875	Security Update
Windows 10 Version 22H2 for x64-based Systems	5063709	SecurityUpdate
Windows 10 Version 22H2 for ARM64-based Systems	5063709	Security Update
Windows 10 Version 22H2 for 32-bit Systems	5063709	SecurityUpdate
Windows 11 Version 23H2 for ARM64-based Systems	5063875	Security Update

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

EPSS

Процентиль: 25%

0.00083

Низкий

9.1 Critical

CVSS3

Связанные уязвимости

CVE-2025-50171

CVSS3: 9.1

nvd

3 месяца назад

Missing authorization in Remote Desktop Server allows an unauthorized attacker to perform spoofing over a network.

GHSA-f3vj-5hwj-h699

CVSS3: 9.1

github

3 месяца назад

Missing authorization in Remote Desktop Server allows an unauthorized attacker to perform spoofing over a network.

BDU:2025-10074

CVSS3: 9.1

fstec

3 месяца назад

Уязвимость службы Remote Desktop Services (RDS) операционных систем Windows, позволяющая нарушителю получить несанкционированный доступ на изменение защищаемой информации

EPSS

Процентиль: 25%

0.00083

Низкий

9.1 Critical

CVSS3