Analysis Summary

CVE-2024-49117 CVSS:8.4

Microsoft Windows Remote Desktop Client could allow a remote attacker to execute arbitrary code on the system, caused by improper access control in Remote Desktop Client component. By persuading a victim to open specially crafted content, an attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2024-49147 CVSS:9.3

Microsoft Update Catalog could allow a remote attacker to gain elevated privileges on the system, caused by a deserialization of untrusted data flaw. By sending a specially crafted request, an attacker could exploit this vulnerability to escalate privileges.

CVE-2024-49105 CVSS:8.4

Microsoft Windows Remote Desktop Client could allow a remote attacker to execute arbitrary code on the system, caused by improper access control in Remote Desktop Client component. By persuading a victim to open specially crafted content, an attacker could exploit this vulnerability to execute arbitrary code on the system.

Impact

• Code Execution
• Privilege Escalation

Indicators of Compromise

CVE

• CVE-2024-49117
• CVE-2024-49147
• CVE-2024-49105

Affected Vendors

Remediation

Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.

CVE-2024-49117

CVE-2024-49147

CVE-2024-49105