Security researchers have created exploits for the remote code execution vulnerability in Microsoft’s Remote Desktop Services, dubbed BlueKeep. Microsoft released a patch for the flaw on May 14 and described it as being “wormable”” – not requiring user interaction. The severity score of the flaw is 9.8 out of 10
Source: which is a clear indicator that there are businesses relying on old Windows XP.”