Microsoft Windows Server 2012
Moderate fix2 remedies
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*
Moderate fix2 remedies
Microsoft Windows Remote Desktop Licensing Service Security Feature Bypass Vulnerability
Vulnerability
A vulnerability exists in the Windows Remote Desktop Licensing Service due to missing authentication for a critical function. This flaw allows an unauthorized attacker to bypass a security feature over the network. Specifically, an attacker in a machine-in-the-middle position could exploit this vulnerability to bypass certificate validation when a user connects to a trusted server.
Impact
Exploitation of this vulnerability could lead to unauthorized bypassing of security features, specifically allowing attackers to manipulate certificate validations in remote desktop sessions.
Remediation
Users can apply the security update available through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles KB5062597, KB5062592, KB5062632, KB5062560, KB5062553, KB5062570, KB5062554, KB5062552, KB5062557, and KB5062557.
Added: Jul 8, 2025, 9:29 PM
Updated: Jul 8, 2025, 9:29 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
3.1exploitability
4.0remediation
7.7relevance
0.2threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.