CVE-2019-0708
CRITICALCVSS 9.8/10Actively ExploitedEPSS 100.00%
Last modified
CVE-2019-0708 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.. CISA has confirmed active exploitation in the wild. EPSS estimates a 100.00% chance of exploitation in the next 30 days.
Description
A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
100.0th percentile
Probability of exploitation in the next 30 days. Learn more
Exploitation Status
This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by .
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Microsoft | Windows 7 | All versions | Sp1 |
| Microsoft | Windows Server 2008 | All versions | Sp2 |
| Microsoft | Windows Server 2008 | r2 | Sp1 |
| Siemens | Axiom Multix M Firmware | All versions | — |
| Siemens | Axiom Vertix Md Trauma Firmware | All versions | — |
| Siemens | Axiom Vertix Solitaire M Firmware | All versions | — |
| Siemens | Mobilett Xp Digital Firmware | All versions | — |
| Siemens | Multix Pro Acss P Firmware | All versions | — |
| Siemens | Multix Pro P Firmware | All versions | — |
| Siemens | Multix Pro Firmware | All versions | — |
| Siemens | Multix Pro Acss Firmware | All versions | — |
| Siemens | Multix Pro Navy Firmware | All versions | — |
| Siemens | Multix Swing Firmware | All versions | — |
| Siemens | Multix Top Firmware | All versions | — |
| Siemens | Multix Top Acss Firmware | All versions | — |
| Siemens | Multix Top P Firmware | All versions | — |
| Siemens | Multix Top Acss P Firmware | All versions | — |
| Siemens | Vertix Solitaire Firmware | All versions | — |
| Siemens | Atellica Solution Firmware | All versions | — |
| Siemens | Aptio Firmware | All versions | — |
| Siemens | Streamlab Firmware | All versions | — |
| Siemens | Centralink Firmware | All versions | — |
| Siemens | Viva E Firmware | All versions | — |
| Siemens | Viva Twin Firmware | All versions | — |
| Siemens | Syngo Lab Process Manager | All versions | — |
| Siemens | Rapidpoint 500 Firmware | <= 2.3.2 | — |
| Siemens | Lantis Firmware | All versions | — |
| Huawei | Agile Controller-Campus Firmware | v100r002c00 | — |
| Huawei | Agile Controller-Campus Firmware | v100r002c10 | — |
| Huawei | Bh620 V2 Firmware | v100r002c00 | — |
| Huawei | Bh621 V2 Firmware | v100r002c00 | — |
| Huawei | Bh622 V2 Firmware | v100r001c00 | — |
| Huawei | Bh640 V2 Firmware | v100r002c00 | — |
| Huawei | Ch121 Firmware | v100r001c00 | — |
| Huawei | Ch140 Firmware | v100r001c00 | — |
| Huawei | Ch220 Firmware | v100r001c00 | — |
| Huawei | Ch221 Firmware | v100r001c00 | — |
| Huawei | Ch222 Firmware | v100r002c00 | — |
| Huawei | Ch240 Firmware | v100r001c00 | — |
| Huawei | Ch242 Firmware | v100r001c00 | — |
| Huawei | Ch242 V3 Firmware | v100r001c00 | — |
| Huawei | E6000 Firmware | v100r002c00 | — |
| Huawei | E6000 Chassis Firmware | v100r001c00 | — |
| Huawei | Gtsoftx3000 Firmware | v200r001c01spc100 | — |
| Huawei | Gtsoftx3000 Firmware | v200r002c00spc300 | — |
| Huawei | Gtsoftx3000 Firmware | v200r002c10spc100 | — |
| Huawei | Oceanstor 18500 Firmware | v100r001c30spc300 | — |
| Huawei | Oceanstor 18800 Firmware | v100r001c30spc300 | — |
| Huawei | Oceanstor 18800f Firmware | v100r001c30spc300 | — |
| Huawei | Oceanstor Hvs85t Firmware | v100r001c00 | — |
Showing 50 of 75 affected configurations. See NVD for the full list.
References
- http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.htmlExploit, Third Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/153627/Microsoft-Windows-RDP-BlueKeep-Denial-Of-Service.htmlExploit, Third Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/154579/BlueKeep-RDP-Remote-Windows-Kernel-Use-After-Free.htmlExploit, Third Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/155389/Microsoft-Windows-7-x86-BlueKeep-RDP-Use-After-Free.htmlThird Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/162960/Microsoft-RDP-Remote-Code-Execution.htmlExploit, Third Party Advisory, VDB Entry
- http://www.huawei.com/en/psirt/security-notices/huawei-sn-20190515-01-windows-enThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-166360.pdfThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-406175.pdfThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-433987.pdfThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-616199.pdfThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-832947.pdfThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-932041.pdfThird Party Advisory
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708Patch, Vendor Advisory
- http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.htmlExploit, Third Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/153627/Microsoft-Windows-RDP-BlueKeep-Denial-Of-Service.htmlExploit, Third Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/154579/BlueKeep-RDP-Remote-Windows-Kernel-Use-After-Free.htmlExploit, Third Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/155389/Microsoft-Windows-7-x86-BlueKeep-RDP-Use-After-Free.htmlThird Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/162960/Microsoft-RDP-Remote-Code-Execution.htmlExploit, Third Party Advisory, VDB Entry
- http://www.huawei.com/en/psirt/security-notices/huawei-sn-20190515-01-windows-enThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-166360.pdfThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-406175.pdfThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-433987.pdfThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-616199.pdfThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-832947.pdfThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-932041.pdfThird Party Advisory
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708Patch, Vendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-0708US Government Resource
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2019-0708?
A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
How severe is CVE-2019-0708?
CVE-2019-0708 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 100.00% probability of exploitation in the next 30 days. This vulnerability is listed in CISA's Known Exploited Vulnerabilities catalog.
How do I fix CVE-2019-0708?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2019-0708?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST