What is CVE-2020-0609?

CVE-2020-0609 is a vulnerability in Microsoft Windows Server. Published 2020-01-14.

Is CVE-2020-0609 known to be exploited?

57 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Microsoft Windows Server

CVE-2020-0609

A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Gateway…

EPSS: 0.888 (99.5th percentile) — read the EPSS interpretation.

Affected products

Microsoft Windows Server — versions 2019, 2016, 2012

Public proof-of-concept exploits

ly4k/BlueGate
ioncodes/BlueGate
MalwareTech/RDGScanner
ruppde/rdg_scanner_cve-2020-0609
Archi73ct/CVE-2020-0609
CVEDB/top
CnHack3r/Penetration_
Cruxer8Mech/Idk
EchoGin404/-
EchoGin404/gongkaishouji

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0609 (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-0609?: CVE-2020-0609 is a vulnerability in Microsoft Windows Server. Published 2020-01-14.
Is CVE-2020-0609 known to be exploited?: 57 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.