Microsoft fixes two Windows RDP flaws that can expose sensitive data

Microsoft has fixed two Windows Remote Desktop Protocol vulnerabilities that can allow an unauthenticated attacker to disclose sensitive information over a network. The flaws are tracked as CVE-2026-42908 and CVE-2026-45639. Both were patched in Microsoft’s June 9, 2026 security updates and both affect Windows Remote Desktop Protocol. These are not remote code execution bugs. They […] The post Microsoft fixes two Windows RDP flaws that can expose sensitive data appeared first on VPN Central.