CVE Catalog

CVE-2026-47654

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.55%

42th percentile - higher than 42% of all known CVEs

Summary

A Use-After-Free vulnerability in the Remote Desktop Client allows an unauthorized attacker to execute code remotely over a network.

Risk Assessment

An attacker could take control of the victim's system, steal data, or install malware without requiring authentication.

Recommendation

Immediately apply the security update provided by the Remote Desktop Client vendor and restrict RDP access to trusted networks.

Original NVD description (English source)

Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS