CVE-2025-24045: Windows Remote Desktop Services Remote Code Execution Vulnerability
First published: Tue Mar 11 2025(Updated: )
<p>Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.</p>
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2025 | ||
| Microsoft Windows Server 2022 | ||
| Microsoft Windows Server | ||
| Microsoft Windows Server | ||
| Microsoft Windows Server 2022 | ||
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2012 R2 | ||
| Microsoft Windows Server 2025 | ||
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server 2012 R2 | ||
| Microsoft Windows Server 2022 23H2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What are the potential impacts of CVE-2025-24045 on Windows Remote Desktop Services?
CVE-2025-24045 allows an unauthorized attacker to execute code over a network due to sensitive data being stored in improperly locked memory.
Which versions of Windows Server are affected by CVE-2025-24045?
CVE-2025-24045 affects Windows Server 2012, 2016, 2019, 2022, and 2025, including Server Core installations.
What is the recommended fix for CVE-2025-24045?
Applying the relevant security patches available from Microsoft is the recommended fix for CVE-2025-24045.
How can organizations mitigate the risks associated with CVE-2025-24045?
Organizations can mitigate risks by ensuring that their Windows Server installations are updated with the latest security patches.
Is CVE-2025-24045 considered a high-severity vulnerability?
Yes, CVE-2025-24045 is classified as a high-severity vulnerability due to the potential for code execution by unauthorized attackers.
- collector/mitre-cve
- source/MITRE
- collector/msrc-cve
- source/Microsoft
- agent/software-canonical-lookup
- agent/title
- agent/softwarecombine
- agent/type
- agent/first-publish-date
- collector/msrc
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/author
- agent/description
- collector/the-register
- source/The Register
- alias/CVE-2025-24993
- alias/CVE-2025-24991
- alias/CVE-2025-24984
- alias/CVE-2025-24985
- alias/CVE-2025-24983
- alias/CVE-2025-26633
- alias/CVE-2025-24035
- alias/CVE-2025-24045
- alias/CVE-2025-26645
- alias/CVE-2025-24057
- alias/CVE-2025-24064
- alias/CVE-2025-24084
- alias/CVE-2025-26630
- alias/CVE-2025-24201
- alias/CVE-2024-50302
- alias/CVE-2024-43093
- agent/news-ai
- zeroday/true
- exploited/true
- agent/weakness
- agent/references
- agent/severity
- agent/source
- agent/tags
- agent/event
- agent/trending
- vendor/microsoft
- canonical/microsoft windows server 2019
- canonical/microsoft windows server 2025
- canonical/microsoft windows server 2022
- canonical/microsoft windows server
- canonical/microsoft windows server 2012 r2
- canonical/microsoft windows server 2022 23h2
- canonical/microsoft windows server 2016