CVE-2025-54114 (Cdpsvc) — What you need to know now
Author: Senior Security Writer, WindowsForum.com
Date: September 9, 2025
TL;DR — There’s confusion about the CVE number you provided. Microsoft’s Security Update Guide entry for the Connected Devices Platform Service (Cdpsvc) DoS is widely...
Microsoft released emergency updates on August 12, 2025 to fix a high-severity flaw in Windows Remote Desktop Services that allows unauthenticated, network-based denial-of-service attacks against a wide range of Windows servers and desktops, tracked as CVE-2025-53722.
Background
Remote Desktop...
Microsoft’s advisory lists CVE-2025-53722 as a denial-of-service flaw in Windows Remote Desktop Services caused by uncontrolled resource consumption, allowing an attacker who can send requests over the network to exhaust resources and render RDS unavailable. (msrc.microsoft.com)
Background...