CVE-2023-29348

Summary

CVE-2023-29348 is a newly disclosed vulnerability affecting the Windows Remote Desktop Gateway (RD Gateway). This issue permits an unauthenticated attacker to extract sensitive information through specially crafted RDP packets. Successful exploitation could lead to the disclosure of internal IP addresses, server names, and other system information. This vulnerability poses a significant risk, particularly in enterprise environments where RDP is widely used for remote access. It is advised that affected systems are promptly patched to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.