Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2020-0609
HistoryJan 14, 2020 - 11:15 p.m.

CVE-2020-0609

2020-01-1423:15:30
[email protected]
web.nvd.nist.gov
266
In Wild
4
cve-2020-0609
windows
remote desktop gateway
rd gateway
remote code execution
rdp
vulnerability
nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.346 Low

EPSS

Percentile

97.1%

JSON

A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka β€˜Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability’. This CVE ID is unique from CVE-2020-0610.

Affected configurations

Vulners
NVD
Node
microsoftwindows_server
OR
microsoftwindows_server
OR
microsoftwindows_server
OR
microsoftwindows_server
VendorProductVersionCPE
microsoftwindows_server*cpe:2.3:o:microsoft:windows_server:*:*:*:*:*:*:*:*
microsoftwindows_server*cpe:2.3:o:microsoft:windows_server:*:*:*:*:*:*:*:*
microsoftwindows_server*cpe:2.3:o:microsoft:windows_server:*:*:*:*:*:*:*:*
microsoftwindows_server*cpe:2.3:o:microsoft:windows_server:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "Windows Server",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "2019"
      },
      {
        "status": "affected",
        "version": "2016"
      },
      {
        "status": "affected",
        "version": "2012"
      },
      {
        "status": "affected",
        "version": "2012 R2"
      }
    ]
  }
]

Social References

More

Related

githubexploit 2
attackerkb 3
cvelist 2
cert 1
cve 1
prion 2
nvd 2
zdt 1
threatpost 1
nessus 5
checkpoint_advisories 2
mscve 2
symantec 2
ics 1
avleonov 1
qualysblog 1
thn 1
rapid7blog 1
securelist 2
mskb 6
openvas 3
kaspersky 1
talosblog 1
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2020-01-21 21:33:17
Exploit for Cleartext Storage of Sensitive Information in Zyxel Usg20-Vpn Firmware
2021-01-04 00:56:55
attackerkb
attackerkb
CVE-2020-0610
2020-01-14 00:00:00
CVE-2020-0609
2020-01-14 00:00:00
Windows Remote Desktop Gateway RCE (CVE-2020-0609)
2020-02-24 00:00:00
cvelist
cvelist
CVE-2020-0610
2020-01-14 23:11:23
CVE-2020-0609
2020-01-14 23:11:23
cert
cert
Microsoft Windows Remote Desktop Gateway allows for unauthenticated remote code execution
2020-01-14 00:00:00
cve
cve
CVE-2020-0610
2020-01-14 23:15:30
prion
prion
Remote code execution
2020-01-14 23:15:00
Remote code execution
2020-01-14 23:15:00
nvd
nvd
CVE-2020-0610
2020-01-14 23:15:30
CVE-2020-0609
2020-01-14 23:15:30
zdt
zdt
Remote Desktop Gateway - (BlueGate) Denial of Service Exploit
2020-01-23 00:00:00
threatpost
threatpost
Microsoft Patches β€˜Major’ Crypto Spoofing Bug
2020-01-14 20:32:30
nessus
nessus
Microsoft Remote Desktop Gateway Multiple RCE Vulnerabilities (uncredentialed check)
2020-01-29 00:00:00
KB4534309: Windows 8.1 and Windows Server 2012 R2 January 2020 Security Update
2020-01-14 00:00:00
KB4534288: Windows Server 2012 January 2020 Security Update
2020-01-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows RDP Gateway Server Remote Code Execution (CVE-2020-0609)
2020-01-14 00:00:00
Microsoft Windows RDP Gateway Server Remote Code Execution (CVE-2020-0610)
2020-01-14 00:00:00
mscve
mscve
Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability
2020-01-14 08:00:00
Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability
2020-01-14 08:00:00
symantec
symantec
Microsoft Windows Remote Desktop Protocol CVE-2020-0609 Remote Code Execution Vulnerability
2020-01-14 00:00:00
Microsoft Windows Remote Desktop Protocol CVE-2020-0610 Remote Code Execution Vulnerability
2020-01-14 00:00:00
ics
ics
Critical Vulnerabilities in Microsoft Windows Operating Systems
2020-01-14 12:00:00
avleonov
avleonov
Big Microsoft day: EOL for Win7, Win2008 and crypt32.dll
2020-01-14 18:02:20
qualysblog
qualysblog
January 2020 Patch Tuesday – 50 Vulns, 8 Critical, Adobe Vulns
2020-01-14 19:34:09
thn
thn
Update Windows 10 Immediately to Patch a Flaw Discovered by the NSA
2020-01-14 18:40:00
rapid7blog
rapid7blog
Trick or Treat! What We Can Learn from the Spookiest Vulnerabilities of the Year
2020-10-29 13:59:06
securelist
securelist
IT threat evolution Q1 2020. Statistics
2020-05-20 10:00:43
Kaspersky Security Bulletin 2020-2021. EU statistics
2021-05-26 10:00:32
mskb
mskb
January 14, 2020β€”KB4534283 (Monthly Rollup)
2020-01-14 08:00:00
January 14, 2020β€”KB4534288 (Security-only update)
2020-01-14 08:00:00
January 14, 2020β€”KB4534309 (Security-only update)
2020-01-14 08:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4534297)
2020-01-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4534273)
2020-01-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4534271)
2020-01-15 00:00:00
kaspersky
kaspersky
KLA11639 Multiple vulnerabilities in Microsoft Windows
2020-01-14 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday β€” Jan. 2020: Vulnerability disclosures and Snort coverage
2020-01-17 10:14:27

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.346 Low

EPSS

Percentile

97.1%

JSON
Related for CVE-2020-0609
githubexploit2attackerkb3cvelist2cert1cve1prion2nvd2zdt1threatpost1nessus5checkpoint_advisories2mscve2symantec2ics1avleonov1qualysblog1thn1rapid7blog1securelist2mskb6openvas3kaspersky1talosblog1