cve-2026-47654

CVE-2026-47654 is a Critical remote code execution vulnerability in the Windows Remote Desktop Client, disclosed by Microsoft on June 9, 2026. Unlike typical RDP flaws that target servers, this issue allows a malicious Remote Desktop server to attack the client machine when a user connects. The vulnerability affects supported Windows Server releases from 2016 through 2025. Microsoft released updates as part of the June 2026 security release, with no public disclosure or exploitation reported at the time of publication. This tag covers discussions, analysis, and mitigation guidance for CVE-2026-47654, focusing on the reversed risk model where outbound remote access becomes a potential attack vector.