Trending CVEs for the Week of May 27th, 2019

Still CVE-2019-0708 – BlueKeep – Wormable RDP Vulnerability

The BlueKeep vulnerability, tracked as CVE-2019-0708, has been a nightmare for IT & cyber-security teams for the past 2 weeks.

Last week, we extensively covered CVE-2019-0708 and there is no surprises that it is still the trending CVE for this week.

Over 7.5 million devices were in danger before Microsoft released patches, although the danger remains present, as 1 million devices are vulnerable to BlueKeep, a vulnerability in the Remote Desktop Protocol (RDP).

NopSec advises you to apply patches immediately. If you can’t apply the patches immediately, you can find the workaround here.

 

References

Microsoft Security Advisory

National Vulnerability Database

ZDNet