Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability CVE-2024-43467 Security Vulnerability Released: Sep 10, 2024 Assigning CNA: Microsoft Impact: Remote Code Execution Max Severity: Important Weakness: CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CVSS Source: Microsoft CVSS 3.1: 7.5 / 6.5 Metric --- Attack Vector Attack Complexity Privileges Required User Interaction Scope Confidentiality Integrity Availability Temporal score metrics (3): Exploitability: High Remediation Effort: High Remediation Level: High References: Microsoft Security Advisory Microsoft Knowledge Base Additional Information: Description: The vulnerability allows an attacker to execute arbitrary code on the affected system. Solution: Apply the latest security updates or patches provided by Microsoft. Impact: Potential for unauthorized access, data theft, and system compromise. Contact Information: Microsoft Security Response Center: Contact Us Microsoft Security Advisory Response Team: Report a Vulnerability Further Reading: Microsoft Security Advisory Microsoft Knowledge Base