CVE-2019-9510 — MEDIUM (5.3)

Vulnerability Description

A vulnerability in Microsoft Windows 10 1803 and Windows Server 2019 and later systems can allow authenticated RDP-connected clients to gain access to user sessions without needing to interact with the Windows lock screen. Should a network anomaly trigger a temporary RDP disconnect, Automatic Reconnection of the RDP session will be restored to an unlocked state, regardless of how the remote system was left. By interrupting network connectivity of a system, an attacker with access to a system being used as a Windows RDP client can gain access to a connected remote system, regardless of whether or not the remote system was locked. This issue affects Microsoft Windows 10, version 1803 and later, and Microsoft Windows Server 2019, version 2019 and later.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Microsoft	Windows 10	1803
Microsoft	Windows Server 2019	-

Related Weaknesses (CWE)

CWE-755 CWE-288

References

https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-rdpbcgr/e729948aPatchVendor Advisory
https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server
https://social.technet.microsoft.com/Forums/windowsserver/en-US/1fd171de-a1b5-47PatchVendor Advisory
https://www.kb.cert.org/vuls/id/576688/Third Party AdvisoryUS Government Resource
https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-rdpbcgr/e729948aPatchVendor Advisory
https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server
https://social.technet.microsoft.com/Forums/windowsserver/en-US/1fd171de-a1b5-47PatchVendor Advisory
https://www.kb.cert.org/vuls/id/576688/Third Party AdvisoryUS Government Resource

FAQ

What is CVE-2019-9510?

CVE-2019-9510 is a vulnerability with a CVSS score of 5.3 (MEDIUM). A vulnerability in Microsoft Windows 10 1803 and Windows Server 2019 and later systems can allow authenticated RDP-connected clients to gain access to user sessions without needing to interact with th...

How severe is CVE-2019-9510?

CVE-2019-9510 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-9510?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 10, Microsoft Windows Server 2019.