Nearly 1 million Windows systems are still unpatched and have been found vulnerable to a recently disclosed critical, wormable, remote code execution vulnerability in the Windows Remote Desktop Protocol (RDP) vulnerability. The vulnerability affects Windows 2003, XP, Windows 7, Windows Server 2008 and 2008 R2 editions and could spread automatically on unprotected systems. Microsoft released a security fix to address the vulnerability with its May 2019 Patch Tuesday updates, but around 950,000 publicly accessible machines on the Internet are vulnerable to the BlueKeep bug.
Source: https://thehackernews.com/2019/05/bluekeep-rdp-vulnerability.html