CVE-2025-26645

Summary

CVE-2025-26645 is a newly disclosed vulnerability that affects Remote Desktop Clients. Hackers can exploit this relative path traversal issue to execute malicious code over a network connection, gaining unauthorized access to vulnerable systems. This vulnerability poses a significant risk, particularly in enterprise environments where Remote Desktop Protocol is commonly used. Attackers can take advantage of this weakness to bypass access controls and infiltrate networks, potentially leading to data theft and other malicious activities. It is crucial for organizations to apply the necessary patches or updates as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.