CVE-2024-49120

Windows Remote Desktop Services Remote Code Execution Vulnerability

CVSS

No CVSS.

References

Link	Resource
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49120	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:microsoft:windows_server_2012:r2:::::::*
	cpe:2.3:o:microsoft:windows_server_2012:-:::::::*
	cpe:2.3:o:microsoft:windows_server_2022_23h2::::::::
	cpe:2.3:o:microsoft:windows_server_2025::::::::
	cpe:2.3:o:microsoft:windows_server_2019::::::::
	cpe:2.3:o:microsoft:windows_server_2022::::::::
	cpe:2.3:o:microsoft:windows_server_2016::::::::

History

14 Jan 2025, 17:53

Type	Values Removed	Values Added
CPE		cpe:2.3:o:microsoft:windows_server_2022:::::::: cpe:2.3:o:microsoft:windows_server_2012:r2:::::::* cpe:2.3:o:microsoft:windows_server_2016:::::::: cpe:2.3:o:microsoft:windows_server_2019:::::::: cpe:2.3:o:microsoft:windows_server_2025:::::::: cpe:2.3:o:microsoft:windows_server_2012:-:::::::* cpe:2.3:o:microsoft:windows_server_2022_23h2::::::::
CVSS	v2 : ~~unknown~~ v3 : ~~8.1~~	v2 : unknown v3 : unknown
First Time		Microsoft Microsoft windows Server 2012 Microsoft windows Server 2016 Microsoft windows Server 2022 23h2 Microsoft windows Server 2019 Microsoft windows Server 2025 Microsoft windows Server 2022
References	~~() https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49120 -~~	() https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49120 - Vendor Advisory
CWE	~~CWE-453~~	CWE-362

12 Dec 2024, 02:04

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-12-12 02:04

Updated : 2025-01-14 17:53

NVD link : CVE-2024-49120

Mitre link : CVE-2024-49120

JSON object : View

Products Affected

microsoft

CWE

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')