The issue, discovered by Joe Tammariello at the CERT Coordination Center (CERT) at Carnegie Mellon’s Software Engineering Institute, is documented as CVE-2019-9510.
Researchers have found an unexpected behavior in a Windows feature designed to protect remote sessions that could allow attackers to take control of them.