What is CVE-2020-0610?

CVE-2020-0610 is a vulnerability in Microsoft Windows Server. Published 2020-01-14.

Is CVE-2020-0610 known to be exploited?

51 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Microsoft Windows Server

CVE-2020-0610

A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Gateway…

EPSS: 0.775 (99.0th percentile) — read the EPSS interpretation.

Affected products

Microsoft Windows Server — versions 2019, 2016, 2012

Public proof-of-concept exploits

ImBIOS/lab-cve-2020-0610
Riocipta75/lab-cve-2020-0610
0xT11/CVE-POC
ARPSyndicate/cvemon
CVEDB/PoC-List
CVEDB/awesome-cve-repo
CVEDB/top
CnHack3r/Penetration_
Cruxer8Mech/Idk
EchoGin404/-

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0610 (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-0610?: CVE-2020-0610 is a vulnerability in Microsoft Windows Server. Published 2020-01-14.
Is CVE-2020-0610 known to be exploited?: 51 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.