Share:

CVE-2025-21297

Critical 8.1

Windows Remote Desktop Services Remote Code Execution Vulnerability

Published January 14, 2025.

Affected software

Microsoft Windows Server 2008

Microsoft Windows Server 2012

Microsoft Windows Server 2016

Microsoft Windows Server 2022

Microsoft Windows Server 2019

Microsoft Windows Server 2025

Microsoft Windows Server 2022 23h2

Get alerts for Microsoft Windows Server 2008

Reference links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21297