Microsoft released patches for two new critical remote code execution (RCE) vulnerabilities found in the Remote Desktop Services (RDS) and affecting all in-support versions of Windows. Microsoft Security Response Center (MSRC) urges users to patch the newly found Windows security flaws as soon as possible due to the elevated risks associated with wormable vulnerabilities. The two critical RCE flaws are tracked as CVE-2019-1181 and CVE 2019-1182, and just like “the previously-fixed BlueKeep vulnerability
Source: