Out-of-bounds Read (CWE-125)
Windows Remote Desktop Licensing Service is vulnerable to a Denial of Service attack. This vulnerability is related to an out-of-bounds read issue (CWE-125) in the affected service. The vulnerability affects various versions of Windows Server, including Windows Server 2008, 2012, 2016, 2019, 2022, and 2022 23h2.
An attacker can exploit this vulnerability to cause a denial of service condition in the Windows Remote Desktop Licensing Service. This could result in the service becoming unavailable, potentially disrupting remote desktop licensing operations. The attack can be performed remotely over the network without requiring user interaction or special privileges. The vulnerability has a CVSS v3.1 base score of 7.5, indicating a high severity level.
There is no evidence that a public proof-of-concept exists. There is no evidence of proof of exploitation at the moment.
A patch is available. Microsoft released an update to address this vulnerability on July 9, 2024. Specific version numbers that should be patched to are: - Windows Server 2022: Update to version 10.0.20348.2582 or later - Windows Server 2022 23h2: Update to version 10.0.25398.1009 or later - Windows Server 2019: Update to version 10.0.17763.6054 or later - Windows Server 2016: Update to version 10.0.14393.7159 or later Older versions of Windows Server (2008, 2012) should also be updated, but specific version numbers were not provided.
1. Apply the security update provided by Microsoft as soon as possible. 2. If immediate patching is not possible, consider temporarily disabling the Windows Remote Desktop Licensing Service if it's not critical for operations. 3. Implement network segmentation and firewall rules to limit access to the Remote Desktop Licensing Service only to trusted networks and devices. 4. Monitor for any unusual activity or performance issues related to the Remote Desktop Licensing Service. 5. Keep systems and software up to date with the latest security patches as a general best practice.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Detection for the vulnerability has been added to Qualys (92149)
A CVSS base score of 7.5 has been assigned.
NVD published the first details for CVE-2024-38073
Feedly found the first article mentioning CVE-2024-38073. See article
Feedly estimated the CVSS score as MEDIUM
This CVE started to trend in security discussions
EPSS Score was set to: 0.05% (Percentile: 17.2%)
This CVE stopped trending in security discussions
CVE-2024-38073 is a critical Denial of Service vulnerability in the Windows Remote Desktop Licensing Service. It has a CVSS score of [insert score here]. The vulnerability is currently being exploited in the wild by [insert threat actor here], and there are no known mitigations or patches available at this time. This vulnerability may have downstream impacts on other third-party vendors or technologies that rely on the affected service. See article