Critical
CVSS 9.1
Overview
Missing authorization in Remote Desktop Server allows an unauthorized attacker to perform spoofing over a network.
CVE-2025-50171
Missing authorization in Remote Desktop Server allows an unauthorized attacker t...
Risk analysis
This vulnerability is rated 🔴 CRITICAL.
- CVSS: 9.1 (CRITICAL)
- Detected tags: misconfiguration, unauth_access (tag impact: HIGH)
Recommended actions:
- Enforce authentication/authorization; reduce default endpoint exposure.