ThreatLevelBeta
Imported from CISA KEV catalog — never analyzed by ThreatLevel. This CVE is part of the CISA Known Exploited Vulnerabilities catalog. Only data from CISA KEV and NVD is shown below; no AI analysis or priority classification has been computed.
Unclassified

CVE-2019-0708

Microsoft Remote Desktop Services Remote Code Execution Vulnerability

Summary

Microsoft Remote Desktop Services, formerly known as Terminal Service, contains an unspecified vulnerability that allows an unauthenticated attacker to connect to the target system using RDP and send specially crafted requests. Successful exploitation allows for remote code execution. The vulnerability is also known under the moniker of BlueKeep.

Classification

This CVE has no priority classification because it was imported directly from the CISA KEV catalog without running the AI analysis pipeline. CISA KEV listing implies active exploitation in the wild; treat with the urgency that implies.

Exploitation Details

Type
Is exploitable with default configuration?
?
Is authentication needed?
?
PoC / Exploit
No
Impact

Detection Resources
Manual Detection
0
Script Detection
0
Scanner Detection
0

Affected Software

Vendor:Microsoft
ProductAffected Versions
Remote Desktop ServicesUnknown
Deployment:
|
Protocol:
|
Ports:
Enterprise UsageEstimated likelihood that this vendor/product is deployed in enterprise environments. AI-generated estimation based on market presence, product type and adoption signals — not exact data.
Very Low
Low
Medium
High
Very High
Vendor Size:
Vendor Notifications
Not available
Remediation
Workaround

Not available

Patch

Not available

Update

Not available

Threat Intelligence
EPSS Score94.5%

Probability of exploitation in the next 30 days

EPSS Percentile100%

Worse than 100% of all CVEs

Last updated: Loading...
CISAKEV
CISA KEV
Listed
Loading...
Active Exploitation
Active
cisa.gov
Threat Actors

No known threat actors

Detection Rules

No detection rules available

NVD Data

Published: Loading...Modified: Loading...

Description Summary

No description available

CVSS Base Score

9.8
Critical

CVSS Vector (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

Attack Vector (AV)
Physical
Local
Adjacent
Network
Attack Complexity (AC)
High
Low
Privileges Required (PR)
High
Low
None
User Interaction (UI)
Required
None
Scope (S)
Unchanged
Changed
Confidentiality (C)
None
Low
High
Integrity (I)
None
Low
High
Availability (A)
None
Low
High
CWE:CWE-416 Use After Free
|
NVD:CVE-2019-0708
|
Version From:
|
Version Upto:2.3.2

Affected Software (CPE) (75)

  • cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
  • cpe:2.3:o:siemens:axiom_multix_m_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:axiom_vertix_md_trauma_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:axiom_vertix_solitaire_m_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:mobilett_xp_digital_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:multix_pro_acss_p_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:multix_pro_p_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:multix_pro_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:multix_pro_acss_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:multix_pro_navy_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:multix_swing_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:multix_top_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:multix_top_acss_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:multix_top_p_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:multix_top_acss_p_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:vertix_solitaire_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:atellica_solution_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:aptio_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:streamlab_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:centralink_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:viva_e_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:viva_twin_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:a:siemens:syngo_lab_process_manager:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:rapidpoint_500_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:siemens:lantis_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:agile_controller-campus_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:agile_controller-campus_firmware:v100r002c10:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:bh620_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:bh621_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:bh622_v2_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:bh640_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:ch121_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:ch140_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:ch220_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:ch221_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:ch222_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:ch240_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:ch242_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:ch242_v3_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:e6000_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:e6000_chassis_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:gtsoftx3000_firmware:v200r001c01spc100:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:gtsoftx3000_firmware:v200r002c00spc300:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:gtsoftx3000_firmware:v200r002c10spc100:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:oceanstor_18500_firmware:v100r001c30spc300:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:oceanstor_18800_firmware:v100r001c30spc300:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:oceanstor_18800f_firmware:v100r001c30spc300:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:oceanstor_hvs85t_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:oceanstor_hvs85t_firmware:v100r001c30spc200:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:oceanstor_hvs88t_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:oceanstor_hvs88t_firmware:v100r001c30spc200:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh1288_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh1288a_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh2265_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh2268_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh2285_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh2285h_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh2288_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh2288a_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh2288e_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh2288h_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh2485_v2_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh5885_v2_firmware:v100r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:rh5885_v3_firmware:v100r003c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:smc2.0_firmware:v500r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:smc2.0_firmware:v600r006c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:seco_vsm_firmware:v200r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:uma_firmware:v200r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:uma_firmware:v300r001c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:x6000_firmware:v100r002c00:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:x8000_firmware:v100r002c20:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:elog_firmware:v200r003c10:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:espace_ecs_firmware:v300r001c00:*:*:*:*:*:*:*

Sources

0

No sources

Priority History

No priority changes recorded