Remote Desktop Client Remote Code Execution Vulnerability_CVE-2026-42913

7.5 / 10

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Basic Information

ID CVE-2026-42913

Source microsoft

Published Jun 9, 2026 at 17:06

Modified Jun 9, 2026 at 17:49

Affected Product

Vendor Microsoft

Product Remote Desktop client for Windows Desktop

Version 1.2.0.0

Affected Versions Microsoft Remote Desktop client for Windows Desktop 1.2.0.0
Microsoft Windows 11 version 23H2 10.0.22631.0
Microsoft Windows 11 Version 23H2 10.0.22631.0
Microsoft Windows 11 Version 24H2 10.0.26100.0
Microsoft Windows 11 Version 25H2 10.0.26200.0
Microsoft Windows 11 version 26H1 10.0.28000.0
Microsoft Windows Server 2022 10.0.20348.0
Microsoft Windows Server 2025 10.0.26100.0
Microsoft Windows Server 2025 (Server Core installation) 10.0.26100.0

CWE Classification

CWE-362 CWE-416

References

msrc.microsoft.com /update-guide/vulnerability/CVE-2026-42913

{
    "lastseen": "",
    "description": "",
    "published": "2026-06-09T17:06:06.158Z",
    "modified": "2026-06-09T17:49:40.182Z",
    "type": "cve",
    "title": "Remote Desktop Client Remote Code Execution Vulnerability",
    "source": "microsoft",
    "references": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42913",
    "id": "CVE-2026-42913",
    "bulletinFamily": "",
    "cwe": [
        "CWE-362",
        "CWE-416"
    ],
    "cvelist": null,
    "sourceData": "Microsoft Remote Desktop client for Windows Desktop 1.2.0.0\nMicrosoft Windows 11 version 23H2 10.0.22631.0\nMicrosoft Windows 11 Version 23H2 10.0.22631.0\nMicrosoft Windows 11 Version 24H2 10.0.26100.0\nMicrosoft Windows 11 Version 25H2 10.0.26200.0\nMicrosoft Windows 11 version 26H1 10.0.28000.0\nMicrosoft Windows Server 2022 10.0.20348.0\nMicrosoft Windows Server 2025 10.0.26100.0\nMicrosoft Windows Server 2025 (Server Core installation) 10.0.26100.0",
    "sourceHref": "",
    "cvss": {
        "score": 7.5,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Remote Desktop client for Windows Desktop",
    "version": "1.2.0.0",
    "vendor": "Microsoft",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Basic Information

Affected Product

CWE Classification

References

💭 Join the Security Discussion ❌ Cancel Reply