Security researcher Joe Tammariello of Carnegie Mellon University discovered a Zero-day vulnerability in Microsoft Windows Remote Desktop protocol. The vulnerability affects Windows versions Windows 10 1803 and Windows Server 2019. Microsoft recommended enabling enabling NLA to defend against the critical BlueKeep RDP vulnerability(CVE-2019-0708) The vulnerability can be tracked as CVE- 2019-9510 and assigned CVE score of 4.6. Users are recommended to lock the local computers instead of the remote computer. Microsoft said the behavior does not meet the Microsoft Security Servicing Criteria.”]
Source: https://gbhackers.com/rdp-zero-day-windows-lock-screen/