CVE-2025-32710

Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*

History

10 Jul 2025, 13:51

Type Values Removed Values Added
First Time Microsoft windows Server 2022 23h2
Microsoft windows Server 2008
Microsoft windows Server 2019
Microsoft windows Server 2012
Microsoft windows Server 2016
Microsoft
Microsoft windows Server 2025
Microsoft windows Server 2022
References () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-32710 - () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-32710 - Vendor Advisory
CPE cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

12 Jun 2025, 16:06

Type Values Removed Values Added
Summary
  • (es) Use After Free en los Servicios de Escritorio remoto de Windows permite que un atacante no autorizado ejecute código a través de una red.

10 Jun 2025, 17:21

Type Values Removed Values Added
New CVE

Information

Published : 2025-06-10 17:21

Updated : 2025-07-10 13:51


NVD link : CVE-2025-32710

Mitre link : CVE-2025-32710

CVE.ORG link : CVE-2025-32710


JSON object : View

Products Affected

microsoft

  • windows_server_2008
  • windows_server_2025
  • windows_server_2016
  • windows_server_2012
  • windows_server_2022
  • windows_server_2019
  • windows_server_2022_23h2
CWE
CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CWE-416

Use After Free