Known Vulnerabilities for Remote Desktop by Microsoft
Listed below are 10 of the newest known vulnerabilities associated with "Remote Desktop" by "Microsoft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-58626 json | Use after free in Windows Remote Desktop Services allows an authorized attacker to execute code over a network. | Not Provided | 2026-07-14 | 2026-07-15 |
| CVE-2026-58446 json | Presenton before 0.8.8-beta bundles an MCP server that, on server/Docker deployments configured with session authentication (... | Not Provided | 2026-06-30 | 2026-07-14 |
| CVE-2026-57158 json | FreeRDP is a free implementation of the Remote Desktop Protocol. From 3.21.0 before 3.28.0, FreeRDP clients using the GFX pip... | Not Provided | 2026-07-10 | 2026-07-14 |
| CVE-2026-57157 json | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.28.0, FreeRDP server implementations with the MS-... | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-57156 json | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.28.0 on 32-bit builds, FreeRDP clients contain an... | Not Provided | 2026-07-10 | 2026-07-15 |
| CVE-2026-55827 json | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-defau... | Not Provided | 2026-07-10 | 2026-07-15 |
| CVE-2026-55743 json | The shell tool command allowlist in the SecurityPolicy of OpenHuman desktop agent through 0.54.0 (default Supervised security... | Not Provided | 2026-06-17 | 2026-06-17 |
| CVE-2026-54990 json | Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network. | Not Provided | 2026-07-14 | 2026-07-15 |
| CVE-2026-54264 json | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other lang... | Not Provided | 2026-06-22 | 2026-06-23 |
| CVE-2026-50551 json | SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, SiYuan contains a stored cross-site scripting ... | Not Provided | 2026-06-24 | 2026-06-25 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Microsoft | Remote Desktop | 10.3.9 | |||
| Application | Microsoft | Remote Desktop | 10.3.8 | |||
| Application | Microsoft | Remote Desktop | 10.3.7 | |||
| Application | Microsoft | Remote Desktop | 10.3.6 | |||
| Application | Microsoft | Remote Desktop | 10.3.5 | |||
| Application | Microsoft | Remote Desktop | 10.3.4 | |||
| Application | Microsoft | Remote Desktop | 10.3.3 | |||
| Application | Microsoft | Remote Desktop | 10.3.2 | |||
| Application | Microsoft | Remote Desktop | 10.3.1 | |||
| Application | Microsoft | Remote Desktop | 10.3.0 | |||
| Application | Microsoft | Remote Desktop | 10.2.9 | |||
| Application | Microsoft | Remote Desktop | 10.2.8 | |||
| Application | Microsoft | Remote Desktop | 10.2.7 | |||
| Application | Microsoft | Remote Desktop | 10.2.6 | |||
| Application | Microsoft | Remote Desktop | 10.2.4 | |||
| Application | Microsoft | Remote Desktop | 10.2.3 | |||
| Application | Microsoft | Remote Desktop | 10.2.2 | |||
| Application | Microsoft | Remote Desktop | 10.2.13 | |||
| Application | Microsoft | Remote Desktop | 10.2.12 | |||
| Application | Microsoft | Remote Desktop | 10.2.11 |