Multiple security vulnerabilities have been identified in Windows Remote Desktop Protocol (RDP), which could allow attackers to read sensitive data from system memory during remote sessions. These vulnerabilities affect a wide range of supported Windows client and server builds, including Windows 10, Windows 11, and various Windows Server releases. All five vulnerabilities are related to memory safety flaws in the RDP implementation and lead to high-impact information disclosure rather than allowing code execution.
CVE-2026-50445 (CVSS 6.5 — Medium): This vulnerability involves a buffer over-read issue that can expose contents of heap memory to an attacker over the network. An unauthenticated or low-privileged remote attacker could exploit this flaw to extract data from process memory during RDP sessions.[/subscribe_to_unlock_form]
Multiple security vulnerabilities have been identified in Windows Remote Desktop Protocol (RDP), which could allow attackers to read sensitive data from system memory during remote sessions. These vulnerabilities affect a wide range of supported Windows client and server builds, including Windows 10, Windows 11, and various Windows Server releases. All five vulnerabilities are related to memory safety flaws in the RDP implementation and lead to high-impact information disclosure rather than allowing code execution.
CVE-2026-50445 (CVSS 6.5 — Medium): This vulnerability involves a buffer over-read issue that can expose contents of heap memory to an attacker over the network. An unauthenticated or low-privileged remote attacker could exploit this flaw to extract data from process memory during RDP sessions.[emaillocker id="1283"]
CVE-2026-57982 (CVSS 6.5 — Medium): This vulnerability arises from the use of uninitialized resources, which can lead to RDP interacting with memory areas that were not properly initialized and may still retain sensitive data from previous operations. An unauthenticated or low-privileged remote attacker could exploit this flaw to extract data from process memory during RDP sessions.
CVE-2026-55003 (CVSS 6.5 — Medium): This vulnerability also arises from the use of uninitialized resources, which can lead to RDP interacting with memory areas that were not properly initialized and may still retain sensitive data from previous operations. An unauthenticated or low-privileged remote attacker could exploit this flaw to extract data from process memory during RDP sessions.
CVE-2026-50497 (CVSS 6.5 — Medium): This vulnerability involves a combination of issues, including an off-by-one error, the use of uninitialized resources, and buffer over-read problems. An unauthenticated or low-privileged remote attacker could exploit this flaw to extract data from process memory during RDP sessions.
CVE-2026-57979 (CVSS 6.5 — Medium): This vulnerability involves an out-of-bounds read issue that can expose contents of heap memory to an attacker over the network. An unauthenticated or low-privileged remote attacker could exploit this flaw to extract data from process memory during RDP sessions.
The following reports contain further technical details:
[/emaillocker]