CVE-2021-38665

4 documents4 sources
Severity
7.4HIGH
EPSS
6.2%
top 9.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
21
Microsoft Remote Desktop Client FOR Windows DesktopMicrosoft Windows 10 Version 1507Microsoft Windows 10 Version 1607+18 more
Timeline
PublishedNov 10
Latest updateMay 24

Description

Remote Desktop Protocol Client Information Disclosure Vulnerability

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:NExploitability: 2.8 | Impact: 4.0

Affected Packages21 packages

NVDmicrosoft/remote_desktop_client1.2.16721.2.2677
CVEListV5microsoft/windows_76.1.06.1.7601.25769
CVEListV5microsoft/windows_8.16.3.06.3.9600.20174
CVEListV5microsoft/windows_server_20126.2.06.2.9200.23517

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-6483-ch6v-gp2h: Remote Desktop Protocol Client Information Disclosure Vulnerability2022-05-24
CVEList
Remote Desktop Protocol Client Information Disclosure Vulnerability2021-11-10

📋Vendor Advisories

1
Microsoft
Remote Desktop Protocol Client Information Disclosure Vulnerability2021-11-09
CVE-2021-38665 (HIGH CVSS 7.4) | Remote Desktop Protocol Client Info | cvebase.io