### Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability **CVE-2024-43467** **Security Vulnerability** **Released:** Sep 10, 2024 **Assigning CNA:** Microsoft **Impact:** Remote Code Execution **Max Severity:** Important **Weakness:** [CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')](https://cwe.mitre.org/data/definitions/362.html) **CVSS Source:** Microsoft **CVSS 3.1:** 7.5 / 6.5 **Metric** | **Value** --- | --- Attack Vector | Network Attack Complexity | High Privileges Required | Low User Interaction | None Scope | Unchanged Confidentiality | High Integrity | High Availability | High **Temporal score metrics (3):** - Exploitability: High - Remediation Effort: High - Remediation Level: High **References:** - [Microsoft Security Advisory](https://docs.microsoft.com/en-us/security/advisories/microsoft-advisory) - [Microsoft Knowledge Base](https://support.microsoft.com/en-us/kb/xxxxx) **Additional Information:** - **Description:** The vulnerability allows an attacker to execute arbitrary code on the affected system. - **Solution:** Apply the latest security updates or patches provided by Microsoft. - **Impact:** Potential for unauthorized access, data theft, and system compromise. **Contact Information:** - **Microsoft Security Response Center:** [Contact Us](https://support.microsoft.com/en-us/help/xxxxx) - **Microsoft Security Advisory Response Team:** [Report a Vulnerability](https://docs.microsoft.com/en-us/security/advisories/microsoft-advisory) **Further Reading:** - [Microsoft Security Advisory](https://docs.microsoft.com/en-us/security/advisories/microsoft-advisory) - [Microsoft Knowledge Base](https://support.microsoft.com/en-us/kb/xxxxx)