Overview
RemoteFX vGPU makes it possible for multiple virtual machines to share a physical GPU. This feature was introduced in Windows 7 and was removed as an option for users in Windows Server 2019. We are now aware that the current implementation of RemoteFX vGPU appears susceptible to security vulnerabilities (see the FAQ section for CVE details). Because these newly identified vulnerabilities are architectural, and the feature is already removed from newer versions of Windows, the April 13, 2021 Windows Security Updates and all superseding Windows Updates will no longer contain the RemoteFX vGPU feature.
We strongly encourage that you seek an alternative vGPU option.
Timeline
-
Deprecation: RemoteFX vGPU was removed with the release of Windows 10, version 1809 and Windows Server 2019.
-
Disablement: RemoteFX vGPU was disabled in all applicable Windows platforms in the July 2020 Windows security updates (July 14, 2020).
-
Removal: RemoteFX vGPU will be removed from all applicable Windows platforms in the April 2021 Windows security updates (April 13, 2021)
Alternatives
To mitigate potential security risks within RemoteFX vGPU, we strongly recommend that users consider using an alternative vGPU technology.
Secure GPU virtualization is available through Discrete Device Assignment (DDA) in Windows Server LTSC releases (Windows Server 2016, Windows Server 2019) and Windows Server SAC releases (Windows Server, version 1803 and later versions).
Frequently asked questions
We will no longer release security or nonsecurity updates for RemoteFX vGPU.
If you have a RemoteFX vGPU adapter associated with your VM before installing the April 13, 2021 Security Update, you will need to remove the vGPU adapter before re-starting the VM.
Secure GPU virtualization is available through Discrete Device Assignment (DDA) in Windows Server LTSC releases (Windows Server 2016 and Windows Server 2019) and Windows Server SAC releases (Windows Server, version 1803 and later versions). If you are on a Windows version earlier than Windows 10, version 1607, please consider upgrading.
Please refer to the following security updates for more information:
-
CVE-2020-1032 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability
-
CVE-2020-1036 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability
-
CVE-2020-1040 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability
-
CVE-2020-1041 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability
-
CVE-2020-1042 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability
-
CVE-2020-1043 | Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability
No. RemoteFX vGPU is the only RemoteFX feature being disabled.