Full Report
Microsoft has resolved a known issue causing Remote Desktop sessions to freeze on Windows Server 2025 and Windows 11 24H2 devices. [...]
Analysis Summary
# Vulnerability: Microsoft RDP Freezing After Specific Update Installation
## CVE Details
- CVE ID: Not explicitly listed in the provided text. This issue appears to be resolved as a known/non-security bug, not a traditional CVE assignment.
- CVSS Score: Not provided. (Likely low severity if only causing connection disruptions, but high impact for session stability).
- CWE: Not specified.
## Affected Systems
- Products: Windows Server 2025
- Versions: Systems after installing the February 2025 Security update (KB5051987) and later updates.
- Configurations: Impacting Remote Desktop (RDP) sessions shortly after connection.
## Vulnerability Description
Microsoft deployed a buggy February 2025 Security Update (KB5051987) on Windows Server 2025 systems that caused problems with Remote Desktop connections. Specifically, users experienced Remote Desktop sessions freezing shortly after connecting, rendering mouse and keyboard input unresponsive within the session. This forces users to disconnect and then reconnect to regain control.
The article also notes a *separate but related* RDP issue resolved for Windows 11 24H2 and RDS hosts running Windows Server 2016, where UDP connections caused disconnections lasting up to 65 seconds.
## Exploitation
- Status: Not exploited (Described as a known issue/bug caused by an update).
- Complexity: Not applicable, as the cause is confirmed installation of a faulty update, not external exploitation.
- Attack Vector: N/A (Bug in update deployment/functionality).
## Impact
- Confidentiality: Low (Session interruption, not focused on data theft).
- Integrity: Medium (Disruption of user workflows and productivity).
- Availability: Medium (Temporary denial of service within the RDP session).
## Remediation
### Patches
- **For the Windows Server 2025 RDP Freezing Issue:** Install the latest cumulative updates released *after* the April 8 update cycle, as Microsoft stated these contain the resolution for this specific issue.
- **For the Windows 11 24H2/Server 2016 RDP Disconnection Issue:** A permanent fix was made generally available with the March/April cumulative updates.
### Workarounds
- Disconnect and reconnect to the Remote Desktop session when the freeze occurs.
- (For the RDP freezing issue specifically) Users are advised to "install the latest update for your device as it contains important improvements and issue resolutions, including this one."
## Detection
- Indicators of Compromise: Unresponsive RDP sessions where mouse and keyboard input fail shortly after initiation.
- Detection methods and tools: Monitoring for abnormal session disconnections or user reports immediately following applying the February 2025 updates on Windows Server 2025.
## References
- Vendor Advisory (KB5051987 context):
- bleepingcomputer com/news/microsoft/microsoft-fixes-remote-desktop-freezes-caused-by-windows-updates/
- Related Windows 11 24H2/RDS Issue:
- bleepingcomputer com/news/microsoft/microsoft-recent-windows-updates-cause-remote-desktop-issues/