CISA KEV 정보
| 취약점명 | Microsoft Remote Desktop Services Remote Code Execution Vulnerability |
|---|---|
| 설명 | Microsoft Remote Desktop Services, formerly known as Terminal Service, contains an unspecified vulnerability that allows an unauthenticated attacker to connect to the target system using RDP and send specially crafted requests. Successful exploitation allows for remote code execution. The vulnerability is also known under the moniker of BlueKeep. |
| 조치사항 | Apply updates per vendor instructions. |
| 랜섬웨어 캠페인 악용 | Known |
| CWE | CWE-416 |
| 등록일 (KEV) | 2021-11-03 |
| 조치 기한 | 2022-05-03 |
| 추가 참고 | https://nvd.nist.gov/vuln/detail/CVE-2019-0708 |
NVD 상세 정보
CVSS v3.1: 9.8 CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HCVSS v2.0: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C설명: A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
CWE: CWE-416 | CWE-416
참조
- http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.html [Exploit, Third Party Advisory, VDB Entry]
- http://packetstormsecurity.com/files/153627/Microsoft-Windows-RDP-BlueKeep-Denial-Of-Service.html [Exploit, Third Party Advisory, VDB Entry]
- http://packetstormsecurity.com/files/154579/BlueKeep-RDP-Remote-Windows-Kernel-Use-After-Free.html [Exploit, Third Party Advisory, VDB Entry]
- http://packetstormsecurity.com/files/155389/Microsoft-Windows-7-x86-BlueKeep-RDP-Use-After-Free.html [Third Party Advisory, VDB Entry]
- http://packetstormsecurity.com/files/162960/Microsoft-RDP-Remote-Code-Execution.html [Exploit, Third Party Advisory, VDB Entry]
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190529-01-windows-en [Third Party Advisory]
- http://www.huawei.com/en/psirt/security-notices/huawei-sn-20190515-01-windows-en [Third Party Advisory]
- https://cert-portal.siemens.com/productcert/pdf/ssa-166360.pdf [Third Party Advisory]
- https://cert-portal.siemens.com/productcert/pdf/ssa-406175.pdf [Third Party Advisory]
- https://cert-portal.siemens.com/productcert/pdf/ssa-433987.pdf [Third Party Advisory]
- https://cert-portal.siemens.com/productcert/pdf/ssa-616199.pdf [Third Party Advisory]
- https://cert-portal.siemens.com/productcert/pdf/ssa-832947.pdf [Third Party Advisory]
- https://cert-portal.siemens.com/productcert/pdf/ssa-932041.pdf [Third Party Advisory]
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708 [Patch, Vendor Advisory]
- http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.html [Exploit, Third Party Advisory, VDB Entry]
- ... 외 14건
This product uses the NVD API but is not endorsed or certified by the NVD.