Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-21315 (GCVE-0-2024-21315)
Vulnerability from cvelistv5 – Published: 2024-02-13 18:02 – Updated: 2025-05-03 01:37
VLAI
EPSS
Title
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
Summary
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
Severity
CWE
- CWE-20 - Improper Input Validation
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://msrc.microsoft.com/update-guide/vulnerabi… | vendor-advisory |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Microsoft | Microsoft Defender for Endpoint for Windows |
Affected:
1.0.0.0 , < 10.0.17763.5122
(custom)
|
Date Public
2024-02-20 08:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-21315",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-02-14T15:35:25.681720Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-12T19:09:24.865Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T22:20:40.204Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"Windows 10 Version 1809 for 32-bit Systems",
"Windows 10 Version 1809 for x64-based Systems",
"Windows 10 Version 1809 for ARM64-based Systems",
"Windows Server 2019",
"Windows Server 2019 (Server Core installation)",
"Windows Server 2022",
"Windows Server 2022 (Server Core installation)",
"Windows 11 version 21H2 for x64-based Systems",
"Windows 11 version 21H2 for ARM64-based Systems",
"Windows 10 Version 21H2 for 32-bit Systems",
"Windows 10 Version 21H2 for ARM64-based Systems",
"Windows 10 Version 21H2 for x64-based Systems",
"Windows 10 for 32-bit Systems",
"Windows 10 for x64-based Systems",
"Windows 10 Version 1607 for 32-bit Systems",
"Windows 10 Version 1607 for x64-based Systems",
"Windows Server 2016",
"Windows Server 2016 (Server Core installation)",
"Windows Server 2012 R2",
"Windows Server 2012 R2 (Server Core installation)",
"Windows 11 Version 23H2 for ARM64-based Systems",
"Windows 11 Version 22H2 for ARM64-based Systems",
"Windows 10 Version 22H2 for x64-based Systems",
"Windows 10 Version 22H2 for ARM64-based Systems",
"Windows Server 2022, 23H2 Edition (Server Core installation)",
"Windows 11 Version 23H2 for x64-based Systems",
"Windows 11 Version 22H2 for x64-based Systems",
"Windows 10 Version 22H2 for 32-bit Systems",
"Windows Server 2012",
"Windows Server 2012 (Server Core installation)"
],
"product": "Microsoft Defender for Endpoint for Windows",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.17763.5122",
"status": "affected",
"version": "1.0.0.0",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.17763.5122",
"versionStartIncluding": "1.0.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"datePublic": "2024-02-20T08:00:00.000Z",
"descriptions": [
{
"lang": "en-US",
"value": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability"
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en-US",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20: Improper Input Validation",
"lang": "en-US",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-05-03T01:37:22.272Z",
"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"shortName": "microsoft"
},
"references": [
{
"name": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability",
"tags": [
"vendor-advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
}
],
"title": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"assignerShortName": "microsoft",
"cveId": "CVE-2024-21315",
"datePublished": "2024-02-13T18:02:27.519Z",
"dateReserved": "2023-12-08T22:45:19.366Z",
"dateUpdated": "2025-05-03T01:37:22.272Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-21315",
"date": "2026-05-28",
"epss": "0.00281",
"percentile": "0.5169"
},
"fkie_nvd": {
"configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"10.0.25398.531\", \"matchCriteriaId\": \"6110E9B7-9AF4-4BB8-8E38-F2419A1E0B12\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"75CCACE6-A0EE-4A6F-BD5A-7AA504B02717\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"10.0.19045.3693\", \"matchCriteriaId\": \"34FE251F-9F96-4C7A-9AE1-8040A2A98B42\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"10.0.22621.2715\", \"matchCriteriaId\": \"C43F35FF-BCFC-434A-A6D4-6EDEEEC91E94\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"B0301BA0-81DB-4FC1-9BC3-EB48A56BC608\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"6.3.9600.21813\", \"matchCriteriaId\": \"89BDD39C-EED5-418E-8734-23FD425F43E4\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"10.0.14393.6452\", \"matchCriteriaId\": \"31793C00-933B-4CBB-9EAF-27AFF4C82CBE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"6.2.9200.24710\", \"matchCriteriaId\": \"51D2081C-CA6C-4F6F-8D29-FCCD64FAB4FC\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"10.0.19045.3693\", \"matchCriteriaId\": \"34FE251F-9F96-4C7A-9AE1-8040A2A98B42\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"10.0.22621.2715\", \"matchCriteriaId\": \"C43F35FF-BCFC-434A-A6D4-6EDEEEC91E94\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"8E3C1327-F331-4448-A253-00EAC7428317\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"10.0.10240.20308\", \"matchCriteriaId\": \"60637E9C-A03E-4E64-B559-D817CF8AA82C\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"A045AC0A-471E-444C-B3B0-4CABC23E8CFB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"28A7FEE9-B473-48A0-B0ED-A5CC1E44194C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"10.0.19043.3693\", \"matchCriteriaId\": \"8D2F0987-1200-46E8-B224-CD9E0AE33BD1\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"83A79DD6-E74E-419F-93F1-323B68502633\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"61959ACC-B608-4556-92AF-4D94B338907A\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"10.0.22000.2600\", \"matchCriteriaId\": \"D4ADA63C-F2DA-4770-9D22-6E0A5521A4CC\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"0C3552E0-F793-4CDD-965D-457495475805\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"6.2.9200.24569\", \"matchCriteriaId\": \"C9D85511-1F11-4992-A183-0B6C78D5F8C2\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"10.0.20348.2113\", \"matchCriteriaId\": \"51D16F16-CDCD-48EE-B0A7-02DC0F2317E8\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"10.0.17763.5122\", \"matchCriteriaId\": \"53FF14C4-9735-4A8B-8DDE-D1F852346200\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"73D24713-D897-408D-893B-77A61982597D\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"345FCD64-D37B-425B-B64C-8B1640B7E850\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad de elevaci\\u00f3n de privilegios de Microsoft Defender para Endpoint Protection\"}]",
"id": "CVE-2024-21315",
"lastModified": "2024-11-21T08:54:05.510",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"secure@microsoft.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}]}",
"published": "2024-02-13T18:15:48.403",
"references": "[{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315\", \"source\": \"secure@microsoft.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]",
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secure@microsoft.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-21315\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2024-02-13T18:15:48.403\",\"lastModified\":\"2024-11-21T08:54:05.510\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de elevaci\u00f3n de privilegios de Microsoft Defender para Endpoint Protection\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"10.0.25398.531\",\"matchCriteriaId\":\"6110E9B7-9AF4-4BB8-8E38-F2419A1E0B12\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75CCACE6-A0EE-4A6F-BD5A-7AA504B02717\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"10.0.19045.3693\",\"matchCriteriaId\":\"34FE251F-9F96-4C7A-9AE1-8040A2A98B42\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"10.0.22621.2715\",\"matchCriteriaId\":\"C43F35FF-BCFC-434A-A6D4-6EDEEEC91E94\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"B0301BA0-81DB-4FC1-9BC3-EB48A56BC608\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"6.3.9600.21813\",\"matchCriteriaId\":\"89BDD39C-EED5-418E-8734-23FD425F43E4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"10.0.14393.6452\",\"matchCriteriaId\":\"31793C00-933B-4CBB-9EAF-27AFF4C82CBE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"6.2.9200.24710\",\"matchCriteriaId\":\"51D2081C-CA6C-4F6F-8D29-FCCD64FAB4FC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"10.0.19045.3693\",\"matchCriteriaId\":\"34FE251F-9F96-4C7A-9AE1-8040A2A98B42\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"10.0.22621.2715\",\"matchCriteriaId\":\"C43F35FF-BCFC-434A-A6D4-6EDEEEC91E94\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"8E3C1327-F331-4448-A253-00EAC7428317\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"10.0.10240.20308\",\"matchCriteriaId\":\"60637E9C-A03E-4E64-B559-D817CF8AA82C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"A045AC0A-471E-444C-B3B0-4CABC23E8CFB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"28A7FEE9-B473-48A0-B0ED-A5CC1E44194C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"10.0.19043.3693\",\"matchCriteriaId\":\"8D2F0987-1200-46E8-B224-CD9E0AE33BD1\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"83A79DD6-E74E-419F-93F1-323B68502633\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"61959ACC-B608-4556-92AF-4D94B338907A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"10.0.22000.2600\",\"matchCriteriaId\":\"D4ADA63C-F2DA-4770-9D22-6E0A5521A4CC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"0C3552E0-F793-4CDD-965D-457495475805\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"6.2.9200.24569\",\"matchCriteriaId\":\"C9D85511-1F11-4992-A183-0B6C78D5F8C2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"10.0.20348.2113\",\"matchCriteriaId\":\"51D16F16-CDCD-48EE-B0A7-02DC0F2317E8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"10.0.17763.5122\",\"matchCriteriaId\":\"53FF14C4-9735-4A8B-8DDE-D1F852346200\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"73D24713-D897-408D-893B-77A61982597D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"345FCD64-D37B-425B-B64C-8B1640B7E850\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315\", \"name\": \"Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-01T22:20:40.204Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-21315\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-02-14T15:35:25.681720Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-06-12T19:09:22.090Z\"}}], \"cna\": {\"title\": \"Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability\", \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C\"}, \"scenarios\": [{\"lang\": \"en-US\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Microsoft\", \"product\": \"Microsoft Defender for Endpoint for Windows\", \"versions\": [{\"status\": \"affected\", \"version\": \"1.0.0.0\", \"lessThan\": \"10.0.17763.5122\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows 10 Version 1809 for 32-bit Systems\", \"Windows 10 Version 1809 for x64-based Systems\", \"Windows 10 Version 1809 for ARM64-based Systems\", \"Windows Server 2019\", \"Windows Server 2019 (Server Core installation)\", \"Windows Server 2022\", \"Windows Server 2022 (Server Core installation)\", \"Windows 11 version 21H2 for x64-based Systems\", \"Windows 11 version 21H2 for ARM64-based Systems\", \"Windows 10 Version 21H2 for 32-bit Systems\", \"Windows 10 Version 21H2 for ARM64-based Systems\", \"Windows 10 Version 21H2 for x64-based Systems\", \"Windows 10 for 32-bit Systems\", \"Windows 10 for x64-based Systems\", \"Windows 10 Version 1607 for 32-bit Systems\", \"Windows 10 Version 1607 for x64-based Systems\", \"Windows Server 2016\", \"Windows Server 2016 (Server Core installation)\", \"Windows Server 2012 R2\", \"Windows Server 2012 R2 (Server Core installation)\", \"Windows 11 Version 23H2 for ARM64-based Systems\", \"Windows 11 Version 22H2 for ARM64-based Systems\", \"Windows 10 Version 22H2 for x64-based Systems\", \"Windows 10 Version 22H2 for ARM64-based Systems\", \"Windows Server 2022, 23H2 Edition (Server Core installation)\", \"Windows 11 Version 23H2 for x64-based Systems\", \"Windows 11 Version 22H2 for x64-based Systems\", \"Windows 10 Version 22H2 for 32-bit Systems\", \"Windows Server 2012\", \"Windows Server 2012 (Server Core installation)\"]}], \"datePublic\": \"2024-02-20T08:00:00.000Z\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315\", \"name\": \"Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en-US\", \"value\": \"Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en-US\", \"type\": \"CWE\", \"cweId\": \"CWE-20\", \"description\": \"CWE-20: Improper Input Validation\"}]}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.17763.5122\", \"versionStartIncluding\": \"1.0.0.0\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"shortName\": \"microsoft\", \"dateUpdated\": \"2025-05-03T01:37:22.272Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-21315\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-05-03T01:37:22.272Z\", \"dateReserved\": \"2023-12-08T22:45:19.366Z\", \"assignerOrgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"datePublished\": \"2024-02-13T18:02:27.519Z\", \"assignerShortName\": \"microsoft\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2024-AVI-0128
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Microsoft Windows. Elles permettent à un attaquant de provoquer un contournement de la fonctionnalité de sécurité, une atteinte à la confidentialité des données, un déni de service, une élévation de privilèges, une exécution de code arbitraire à distance et une usurpation d'identité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | Windows | Windows Server 2022 | ||
| Microsoft | Windows | Windows Server 2012 | ||
| Microsoft | Windows | Windows Server 2019 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2019 | ||
| Microsoft | Windows | Windows Server 2012 R2 | ||
| Microsoft | Windows | Windows Server 2008 R2 Service Pack 1 | ||
| Microsoft | Windows | Windows 11 Version 22H2 | ||
| Microsoft | Windows | Windows Server 2022 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2008 Service Pack 2 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 180 | ||
| Microsoft | Windows | Microsoft Defender pour Endpoint pour Windows | ||
| Microsoft | Windows | Windows Server 2008 Service Pack 2 | ||
| Microsoft | Windows | Windows 10 | ||
| Microsoft | Windows | Windows Server 2016 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 21H2 | ||
| Microsoft | Windows | Windows 10 Version 22H2 | ||
| Microsoft | Windows | Windows 11 Version 23H2 | ||
| Microsoft | Windows | Windows 11 version 21H2 | ||
| Microsoft | Windows | Windows Server 2012 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2022, 23H2 Edition (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2016 | ||
| Microsoft | Windows | Windows Server 2008 R2 Service Pack 1 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2012 R2 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 1607 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Windows Server 2022",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 Service Pack 1",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 22H2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 Service Pack 2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 180",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Defender pour Endpoint pour Windows",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 Service Pack 2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 23H2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 version 21H2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022, 23H2 Edition (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2024-21349",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21349"
},
{
"name": "CVE-2024-21369",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21369"
},
{
"name": "CVE-2024-21345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21345"
},
{
"name": "CVE-2024-21352",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21352"
},
{
"name": "CVE-2024-21350",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21350"
},
{
"name": "CVE-2024-21357",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21357"
},
{
"name": "CVE-2024-21375",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21375"
},
{
"name": "CVE-2024-21304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21304"
},
{
"name": "CVE-2024-21356",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21356"
},
{
"name": "CVE-2024-21367",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21367"
},
{
"name": "CVE-2024-21368",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21368"
},
{
"name": "CVE-2024-21412",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21412"
},
{
"name": "CVE-2024-21353",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21353"
},
{
"name": "CVE-2024-21362",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21362"
},
{
"name": "CVE-2024-21341",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21341"
},
{
"name": "CVE-2024-21406",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21406"
},
{
"name": "CVE-2024-20684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20684"
},
{
"name": "CVE-2024-21370",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21370"
},
{
"name": "CVE-2024-21365",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21365"
},
{
"name": "CVE-2024-21391",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21391"
},
{
"name": "CVE-2024-21347",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21347"
},
{
"name": "CVE-2024-21420",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21420"
},
{
"name": "CVE-2024-21339",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21339"
},
{
"name": "CVE-2024-21343",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21343"
},
{
"name": "CVE-2024-21338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21338"
},
{
"name": "CVE-2024-21360",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21360"
},
{
"name": "CVE-2024-21351",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21351"
},
{
"name": "CVE-2024-21361",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21361"
},
{
"name": "CVE-2024-21340",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21340"
},
{
"name": "CVE-2024-21405",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21405"
},
{
"name": "CVE-2024-21372",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21372"
},
{
"name": "CVE-2024-21366",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21366"
},
{
"name": "CVE-2024-21315",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21315"
},
{
"name": "CVE-2024-21344",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21344"
},
{
"name": "CVE-2024-21354",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21354"
},
{
"name": "CVE-2024-21346",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21346"
},
{
"name": "CVE-2024-21342",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21342"
},
{
"name": "CVE-2024-21358",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21358"
},
{
"name": "CVE-2024-21371",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21371"
},
{
"name": "CVE-2023-50387",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
},
{
"name": "CVE-2024-21377",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21377"
},
{
"name": "CVE-2024-21348",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21348"
},
{
"name": "CVE-2024-21363",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21363"
},
{
"name": "CVE-2024-21355",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21355"
},
{
"name": "CVE-2024-21359",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21359"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-20684 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20684"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21304 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21304"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21341 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21341"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21375 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21375"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21405 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21405"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21372 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21372"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21351 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21351"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21363 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21363"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21338 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21338"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21412 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21412"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21359 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21359"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21365 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21365"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21357 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21357"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21377 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21377"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21367 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21367"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21370 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21370"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21368 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21368"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21358 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21358"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21343 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21343"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21420 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21420"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21369 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21369"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21352 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21352"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21345 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21345"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21344 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21344"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21347 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21347"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21354 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21354"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21406 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21406"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21342 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21342"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21361 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21361"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21371 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21371"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21346 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21346"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21391 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21391"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21355 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21355"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21348 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21348"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21362 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21362"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21366 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21366"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21340 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21340"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21349 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21349"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21350 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21350"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21315 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21356 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21356"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21339 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21339"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21360 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21360"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21353 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21353"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-50387 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-50387"
}
],
"reference": "CERTFR-2024-AVI-0128",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-02-14T00:00:00.000000"
}
],
"risks": [
{
"description": "Usurpation d\u0027identit\u00e9"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la fonctionnalit\u00e9 de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eMicrosoft Windows\u003c/span\u003e. Elles permettent \u00e0 un attaquant\nde provoquer un contournement de la fonctionnalit\u00e9 de s\u00e9curit\u00e9, une\natteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, un d\u00e9ni de service, une\n\u00e9l\u00e9vation de privil\u00e8ges, une ex\u00e9cution de code arbitraire \u00e0 distance et\nune usurpation d\u0027identit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Windows",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/"
}
]
}
CERTFR-2024-AVI-0128
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Microsoft Windows. Elles permettent à un attaquant de provoquer un contournement de la fonctionnalité de sécurité, une atteinte à la confidentialité des données, un déni de service, une élévation de privilèges, une exécution de code arbitraire à distance et une usurpation d'identité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | Windows | Windows Server 2022 | ||
| Microsoft | Windows | Windows Server 2012 | ||
| Microsoft | Windows | Windows Server 2019 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2019 | ||
| Microsoft | Windows | Windows Server 2012 R2 | ||
| Microsoft | Windows | Windows Server 2008 R2 Service Pack 1 | ||
| Microsoft | Windows | Windows 11 Version 22H2 | ||
| Microsoft | Windows | Windows Server 2022 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2008 Service Pack 2 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 180 | ||
| Microsoft | Windows | Microsoft Defender pour Endpoint pour Windows | ||
| Microsoft | Windows | Windows Server 2008 Service Pack 2 | ||
| Microsoft | Windows | Windows 10 | ||
| Microsoft | Windows | Windows Server 2016 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 21H2 | ||
| Microsoft | Windows | Windows 10 Version 22H2 | ||
| Microsoft | Windows | Windows 11 Version 23H2 | ||
| Microsoft | Windows | Windows 11 version 21H2 | ||
| Microsoft | Windows | Windows Server 2012 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2022, 23H2 Edition (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2016 | ||
| Microsoft | Windows | Windows Server 2008 R2 Service Pack 1 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2012 R2 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 1607 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Windows Server 2022",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 Service Pack 1",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 22H2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 Service Pack 2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 180",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Defender pour Endpoint pour Windows",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 Service Pack 2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 23H2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 version 21H2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022, 23H2 Edition (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2024-21349",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21349"
},
{
"name": "CVE-2024-21369",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21369"
},
{
"name": "CVE-2024-21345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21345"
},
{
"name": "CVE-2024-21352",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21352"
},
{
"name": "CVE-2024-21350",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21350"
},
{
"name": "CVE-2024-21357",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21357"
},
{
"name": "CVE-2024-21375",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21375"
},
{
"name": "CVE-2024-21304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21304"
},
{
"name": "CVE-2024-21356",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21356"
},
{
"name": "CVE-2024-21367",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21367"
},
{
"name": "CVE-2024-21368",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21368"
},
{
"name": "CVE-2024-21412",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21412"
},
{
"name": "CVE-2024-21353",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21353"
},
{
"name": "CVE-2024-21362",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21362"
},
{
"name": "CVE-2024-21341",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21341"
},
{
"name": "CVE-2024-21406",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21406"
},
{
"name": "CVE-2024-20684",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20684"
},
{
"name": "CVE-2024-21370",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21370"
},
{
"name": "CVE-2024-21365",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21365"
},
{
"name": "CVE-2024-21391",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21391"
},
{
"name": "CVE-2024-21347",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21347"
},
{
"name": "CVE-2024-21420",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21420"
},
{
"name": "CVE-2024-21339",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21339"
},
{
"name": "CVE-2024-21343",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21343"
},
{
"name": "CVE-2024-21338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21338"
},
{
"name": "CVE-2024-21360",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21360"
},
{
"name": "CVE-2024-21351",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21351"
},
{
"name": "CVE-2024-21361",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21361"
},
{
"name": "CVE-2024-21340",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21340"
},
{
"name": "CVE-2024-21405",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21405"
},
{
"name": "CVE-2024-21372",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21372"
},
{
"name": "CVE-2024-21366",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21366"
},
{
"name": "CVE-2024-21315",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21315"
},
{
"name": "CVE-2024-21344",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21344"
},
{
"name": "CVE-2024-21354",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21354"
},
{
"name": "CVE-2024-21346",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21346"
},
{
"name": "CVE-2024-21342",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21342"
},
{
"name": "CVE-2024-21358",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21358"
},
{
"name": "CVE-2024-21371",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21371"
},
{
"name": "CVE-2023-50387",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
},
{
"name": "CVE-2024-21377",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21377"
},
{
"name": "CVE-2024-21348",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21348"
},
{
"name": "CVE-2024-21363",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21363"
},
{
"name": "CVE-2024-21355",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21355"
},
{
"name": "CVE-2024-21359",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21359"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-20684 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20684"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21304 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21304"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21341 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21341"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21375 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21375"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21405 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21405"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21372 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21372"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21351 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21351"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21363 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21363"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21338 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21338"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21412 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21412"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21359 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21359"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21365 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21365"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21357 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21357"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21377 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21377"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21367 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21367"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21370 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21370"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21368 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21368"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21358 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21358"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21343 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21343"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21420 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21420"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21369 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21369"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21352 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21352"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21345 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21345"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21344 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21344"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21347 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21347"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21354 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21354"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21406 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21406"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21342 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21342"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21361 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21361"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21371 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21371"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21346 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21346"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21391 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21391"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21355 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21355"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21348 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21348"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21362 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21362"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21366 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21366"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21340 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21340"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21349 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21349"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21350 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21350"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21315 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21356 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21356"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21339 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21339"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21360 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21360"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21353 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21353"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-50387 du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-50387"
}
],
"reference": "CERTFR-2024-AVI-0128",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-02-14T00:00:00.000000"
}
],
"risks": [
{
"description": "Usurpation d\u0027identit\u00e9"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la fonctionnalit\u00e9 de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eMicrosoft Windows\u003c/span\u003e. Elles permettent \u00e0 un attaquant\nde provoquer un contournement de la fonctionnalit\u00e9 de s\u00e9curit\u00e9, une\natteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, un d\u00e9ni de service, une\n\u00e9l\u00e9vation de privil\u00e8ges, une ex\u00e9cution de code arbitraire \u00e0 distance et\nune usurpation d\u0027identit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Windows",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft du 13 f\u00e9vrier 2024",
"url": "https://msrc.microsoft.com/update-guide/"
}
]
}
BDU:2024-01568
Vulnerability from fstec - Published: 13.02.2024
VLAI
Title
Уязвимость Защитника Microsoft (Microsoft Defender for Endpoint) операционной системы Windows, позволяющая нарушителю повысить свои привилегии
Description
Уязвимость Защитника Microsoft (Microsoft Defender for Endpoint) операционной системы Windows связана с недостатками разграничения доступа. Эксплуатация уязвимости может позволить нарушителю повысить свои привилегии
Severity
Vendor
Microsoft Corp
Software Name
Windows Server 2012, Windows Server 2012 R2, Windows 10, Windows 10 1607, Windows Server 2016, Windows Server 2012 R2 (Server Core installation), Windows Server 2016 (Server Core installation), Windows 10 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows Server 2022 (Server Core installation), Windows 10 21H2, Microsoft Defender for Endpoint, Windows 11 22H2, Windows 10 22H2, Windows 11 21H2, Windows Server 2012 (Server Core installation), Windows 11 23H2, Windows Server 2022, 23H2 Edition (Server Core installation)
Software Version
- (Windows Server 2012), - (Windows Server 2012 R2), - (Windows 10), - (Windows 10 1607), - (Windows Server 2016), - (Windows Server 2012 R2 (Server Core installation)), - (Windows Server 2016 (Server Core installation)), - (Windows 10 1809), - (Windows Server 2019), - (Windows Server 2019 (Server Core installation)), - (Windows Server 2022), - (Windows Server 2022 (Server Core installation)), - (Windows 10 21H2), - (Microsoft Defender for Endpoint), - (Windows 11 22H2), - (Windows 10 22H2), - (Windows 11 21H2), - (Windows Server 2012 (Server Core installation)), - (Windows 11 23H2), - (Windows Server 2022, 23H2 Edition (Server Core installation))
Possible Mitigations
Использование рекомендаций производителя:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315
Reference
https://www.cybersecurity-help.cz/vdb/SB2024021341
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315
CWE
CWE-264
{
"CVSS 2.0": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"CVSS 3.0": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Microsoft Corp",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (Windows Server 2012), - (Windows Server 2012 R2), - (Windows 10), - (Windows 10 1607), - (Windows Server 2016), - (Windows Server 2012 R2 (Server Core installation)), - (Windows Server 2016 (Server Core installation)), - (Windows 10 1809), - (Windows Server 2019), - (Windows Server 2019 (Server Core installation)), - (Windows Server 2022), - (Windows Server 2022 (Server Core installation)), - (Windows 10 21H2), - (Microsoft Defender for Endpoint), - (Windows 11 22H2), - (Windows 10 22H2), - (Windows 11 21H2), - (Windows Server 2012 (Server Core installation)), - (Windows 11 23H2), - (Windows Server 2022, 23H2 Edition (Server Core installation))",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "13.02.2024",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "27.02.2024",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "27.02.2024",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-01568",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-21315",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Windows Server 2012, Windows Server 2012 R2, Windows 10, Windows 10 1607, Windows Server 2016, Windows Server 2012 R2 (Server Core installation), Windows Server 2016 (Server Core installation), Windows 10 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows Server 2022 (Server Core installation), Windows 10 21H2, Microsoft Defender for Endpoint, Windows 11 22H2, Windows 10 22H2, Windows 11 21H2, Windows Server 2012 (Server Core installation), Windows 11 23H2, Windows Server 2022, 23H2 Edition (Server Core installation)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Microsoft Corp Windows Server 2012 - , Microsoft Corp Windows Server 2012 R2 - , Microsoft Corp Windows 10 - 64-bit, Microsoft Corp Windows 10 - 32-bit, Microsoft Corp Windows 10 1607 - 64-bit, Microsoft Corp Windows 10 1607 - 32-bit, Microsoft Corp Windows Server 2016 - , Microsoft Corp Windows Server 2012 R2 (Server Core installation) - , Microsoft Corp Windows Server 2016 (Server Core installation) - , Microsoft Corp Windows 10 1809 - 64-bit, Microsoft Corp Windows 10 1809 - 32-bit, Microsoft Corp Windows Server 2019 - , Microsoft Corp Windows Server 2019 (Server Core installation) - , Microsoft Corp Windows 10 1809 - ARM64, Microsoft Corp Windows Server 2022 - , Microsoft Corp Windows Server 2022 (Server Core installation) - , Microsoft Corp Windows 10 21H2 - 64-bit, Microsoft Corp Windows 10 21H2 - 32-bit, Microsoft Corp Windows 10 21H2 - ARM64, Microsoft Corp Windows 11 22H2 - 64-bit, Microsoft Corp Windows 11 22H2 - ARM64, Microsoft Corp Windows 10 22H2 - 64-bit, Microsoft Corp Windows 10 22H2 - ARM64, Microsoft Corp Windows 10 22H2 - 32-bit, Microsoft Corp Windows 11 21H2 - 64-bit, Microsoft Corp Windows 11 21H2 - ARM64, Microsoft Corp Windows Server 2012 (Server Core installation) - , Microsoft Corp Windows 11 23H2 - 64-bit, Microsoft Corp Windows 11 23H2 - ARM64, Microsoft Corp Windows Server 2022, 23H2 Edition (Server Core installation) - ",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0417\u0430\u0449\u0438\u0442\u043d\u0438\u043a\u0430 Microsoft (Microsoft Defender for Endpoint) \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Windows, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0420\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u044f, \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0438 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u043e\u043c (CWE-264)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0417\u0430\u0449\u0438\u0442\u043d\u0438\u043a\u0430 Microsoft (Microsoft Defender for Endpoint) \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Windows \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438 \u0440\u0430\u0437\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.cybersecurity-help.cz/vdb/SB2024021341\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e \u0437\u0430\u0449\u0438\u0442\u044b",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-264",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)"
}
FKIE_CVE-2024-21315
Vulnerability from fkie_nvd - Published: 2024-02-13 18:15 - Updated: 2024-11-21 08:54
Severity
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
References
| URL | Tags | ||
|---|---|---|---|
| secure@microsoft.com | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315 | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315 | Patch, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_server_2022_23h2 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_10_22h2 | - | |
| microsoft | windows_10_22h2 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_11_22h2 | - | |
| microsoft | windows_11_23h2 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_server_2012 | r2 | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_10_1607 | - | |
| microsoft | windows_10_1607 | - | |
| microsoft | windows_server_2016 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_server_2012 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_10_22h2 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_11_22h2 | - | |
| microsoft | windows_11_23h2 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_10_1507 | - | |
| microsoft | windows_10_1507 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_10_21h2 | - | |
| microsoft | windows_10_21h2 | - | |
| microsoft | windows_10_21h2 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_11_21h2 | - | |
| microsoft | windows_11_21h2 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_server_2022 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_server_2022 | - | |
| microsoft | defender_for_endpoint | * | |
| microsoft | windows_10_1809 | - | |
| microsoft | windows_10_1809 | - | |
| microsoft | windows_10_1809 | - | |
| microsoft | windows_server_2019 | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "6110E9B7-9AF4-4BB8-8E38-F2419A1E0B12",
"versionEndExcluding": "10.0.25398.531",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*",
"matchCriteriaId": "75CCACE6-A0EE-4A6F-BD5A-7AA504B02717",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "34FE251F-9F96-4C7A-9AE1-8040A2A98B42",
"versionEndExcluding": "10.0.19045.3693",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*",
"matchCriteriaId": "A9D54EE6-30AF-411C-A285-A4DCB6C6EC06",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*",
"matchCriteriaId": "C230D3BF-7FCE-405C-B62E-B9190C995C3C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "C43F35FF-BCFC-434A-A6D4-6EDEEEC91E94",
"versionEndExcluding": "10.0.22621.2715",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*",
"matchCriteriaId": "B2D24C54-F04F-4717-B614-FE67B3ED9DC0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:arm64:*",
"matchCriteriaId": "B0301BA0-81DB-4FC1-9BC3-EB48A56BC608",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "89BDD39C-EED5-418E-8734-23FD425F43E4",
"versionEndExcluding": "6.3.9600.21813",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "31793C00-933B-4CBB-9EAF-27AFF4C82CBE",
"versionEndExcluding": "10.0.14393.6452",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*",
"matchCriteriaId": "5E491E46-1917-41FE-8F9A-BB0BDDEB42C3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*",
"matchCriteriaId": "0A1BC97A-263E-4291-8AEF-02EE4E6031E9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
"matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "51D2081C-CA6C-4F6F-8D29-FCCD64FAB4FC",
"versionEndExcluding": "6.2.9200.24710",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "34FE251F-9F96-4C7A-9AE1-8040A2A98B42",
"versionEndExcluding": "10.0.19045.3693",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*",
"matchCriteriaId": "1FD62DCB-66D1-4CEA-828E-0BD302AC63CA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "C43F35FF-BCFC-434A-A6D4-6EDEEEC91E94",
"versionEndExcluding": "10.0.22621.2715",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*",
"matchCriteriaId": "D5EC3F68-8F41-4F6B-B2E5-920322A4A321",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:x64:*",
"matchCriteriaId": "8E3C1327-F331-4448-A253-00EAC7428317",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "60637E9C-A03E-4E64-B559-D817CF8AA82C",
"versionEndExcluding": "10.0.10240.20308",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*",
"matchCriteriaId": "A045AC0A-471E-444C-B3B0-4CABC23E8CFB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*",
"matchCriteriaId": "28A7FEE9-B473-48A0-B0ED-A5CC1E44194C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "8D2F0987-1200-46E8-B224-CD9E0AE33BD1",
"versionEndExcluding": "10.0.19043.3693",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*",
"matchCriteriaId": "8FC46499-DB6E-48BF-9334-85EE27AFE7AF",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*",
"matchCriteriaId": "83A79DD6-E74E-419F-93F1-323B68502633",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*",
"matchCriteriaId": "61959ACC-B608-4556-92AF-4D94B338907A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "D4ADA63C-F2DA-4770-9D22-6E0A5521A4CC",
"versionEndExcluding": "10.0.22000.2600",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*",
"matchCriteriaId": "F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*",
"matchCriteriaId": "0C3552E0-F793-4CDD-965D-457495475805",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "C9D85511-1F11-4992-A183-0B6C78D5F8C2",
"versionEndExcluding": "6.2.9200.24569",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
"matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "51D16F16-CDCD-48EE-B0A7-02DC0F2317E8",
"versionEndExcluding": "10.0.20348.2113",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
"matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "53FF14C4-9735-4A8B-8DDE-D1F852346200",
"versionEndExcluding": "10.0.17763.5122",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:arm64:*",
"matchCriteriaId": "73D24713-D897-408D-893B-77A61982597D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*",
"matchCriteriaId": "306B7CE6-8239-4AED-9ED4-4C9F5B349F58",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*",
"matchCriteriaId": "345FCD64-D37B-425B-B64C-8B1640B7E850",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability"
},
{
"lang": "es",
"value": "Vulnerabilidad de elevaci\u00f3n de privilegios de Microsoft Defender para Endpoint Protection"
}
],
"id": "CVE-2024-21315",
"lastModified": "2024-11-21T08:54:05.510",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "secure@microsoft.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2024-02-13T18:15:48.403",
"references": [
{
"source": "secure@microsoft.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
}
],
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "secure@microsoft.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-J7VW-8R54-MFCG
Vulnerability from github – Published: 2024-02-13 18:38 – Updated: 2024-02-13 18:38
VLAI
Details
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
Severity
7.8 (High)
{
"affected": [],
"aliases": [
"CVE-2024-21315"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-02-13T18:15:48Z",
"severity": "HIGH"
},
"details": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability",
"id": "GHSA-j7vw-8r54-mfcg",
"modified": "2024-02-13T18:38:23Z",
"published": "2024-02-13T18:38:23Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21315"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2024-21315
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2024-21315",
"id": "GSD-2024-21315"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2024-21315"
],
"details": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability",
"id": "GSD-2024-21315",
"modified": "2023-12-13T01:21:42.674250Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secure@microsoft.com",
"ID": "CVE-2024-21315",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Microsoft Defender for Endpoint for Windows",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "1.0.0.0",
"version_value": "10.0.17763.5122"
}
]
}
}
]
},
"vendor_name": "Microsoft"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability"
}
]
},
"impact": {
"cvss": [
{
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-20",
"lang": "eng",
"value": "CWE-20: Improper Input Validation"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315",
"refsource": "MISC",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
}
]
}
},
"nvd.nist.gov": {
"cve": {
"descriptions": [
{
"lang": "en",
"value": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability"
},
{
"lang": "es",
"value": "Vulnerabilidad de elevaci\u00f3n de privilegios de Microsoft Defender para Endpoint Protection"
}
],
"id": "CVE-2024-21315",
"lastModified": "2024-04-11T20:15:18.430",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "secure@microsoft.com",
"type": "Primary"
}
]
},
"published": "2024-02-13T18:15:48.403",
"references": [
{
"source": "secure@microsoft.com",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
}
],
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "secure@microsoft.com",
"type": "Secondary"
}
]
}
}
}
}
MSRC_CVE-2024-21315
Vulnerability from csaf_microsoft - Published: 2024-02-13 08:00 - Updated: 2024-02-20 08:00Summary
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
Severity
Important
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
Customer Action: Required. The vulnerability documented by this CVE requires customer action to resolve.
CWE-20
- Improper Input Validation
Affected products
Fixed
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 | ||
|
Microsoft Defender for Endpoint for Windows 6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
6.3.9600.21813 |
Known affected
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
|
|
Microsoft Defender for Endpoint for Windows <6.3.9600.21813
Microsoft Defender for Endpoint for Windows
|
<6.3.9600.21813 |
Vendor Fix
fix
|
Threats
Impact
Elevation of Privilege
Exploit Status
Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely
References
7 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/update-guide/vulnerabi… | self |
| https://msrc.microsoft.com/csaf/advisories/2024/m… | self |
| https://www.microsoft.com/en-us/msrc/exploitabili… | external |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/update-guide/vulnerabi… | self |
| https://msrc.microsoft.com/csaf/advisories/2024/m… | self |
Acknowledgments
Achmea Red Team with Achmea
Achmea Red Team with Achmea
{
"document": {
"acknowledgments": [
{
"names": [
"Achmea Red Team with Achmea"
]
},
{
"names": [
"Achmea Red Team with Achmea"
]
}
],
"aggregate_severity": {
"namespace": "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
},
{
"category": "general",
"text": "Required. The vulnerability documented by this CVE requires customer action to resolve.",
"title": "Customer Action"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2024-21315 Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability - HTML",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
},
{
"category": "self",
"summary": "CVE-2024-21315 Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability - CSAF",
"url": "https://msrc.microsoft.com/csaf/advisories/2024/msrc_cve-2024-21315.json"
},
{
"category": "external",
"summary": "Microsoft Exploitability Index",
"url": "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability",
"tracking": {
"current_release_date": "2024-02-20T08:00:00.000Z",
"generator": {
"date": "2025-05-03T01:36:59.791Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2024-21315",
"initial_release_date": "2024-02-13T08:00:00.000Z",
"revision_history": [
{
"date": "2024-02-20T08:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published. This CVE was addressed by updates that were released in November 2023, but the CVE was inadvertently omitted from the November 2023 Security Updates. Microsoft strongly recommends that customers running affected versions of Microsoft Defender for Endpoint Protection install the November 2023 updates to be protected from this vulnerability."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11568"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11569"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11570"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "4"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11571"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "5"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11572"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "6"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11923"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "7"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11924"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "8"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11926"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "9"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11927"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "10"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11929"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "11"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11930"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "12"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-11931"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "13"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-10729"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "14"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-10735"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "15"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-10852"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "16"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-10853"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "17"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-10816"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "18"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-10855"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "19"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-10483"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "20"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-10543"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "21"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-12242"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "22"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-12085"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "23"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-12097"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "24"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-12098"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "25"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-12244"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "26"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-12243"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "27"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-12086"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "28"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-12099"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "29"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-10378"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows \u003c6.3.9600.21813",
"product_id": "30"
}
},
{
"category": "product_version",
"name": "6.3.9600.21813",
"product": {
"name": "Microsoft Defender for Endpoint for Windows 6.3.9600.21813",
"product_id": "12013-10379"
}
}
],
"category": "product_name",
"name": "Microsoft Defender for Endpoint for Windows"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21315",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "general",
"text": "Microsoft",
"title": "Assigning CNA"
},
{
"category": "faq",
"text": "An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.",
"title": "What privileges could be gained by an attacker who successfully exploited this vulnerability?"
}
],
"product_status": {
"fixed": [
"12013-10378",
"12013-10379",
"12013-10483",
"12013-10543",
"12013-10729",
"12013-10735",
"12013-10816",
"12013-10852",
"12013-10853",
"12013-10855",
"12013-11568",
"12013-11569",
"12013-11570",
"12013-11571",
"12013-11572",
"12013-11923",
"12013-11924",
"12013-11926",
"12013-11927",
"12013-11929",
"12013-11930",
"12013-11931",
"12013-12085",
"12013-12086",
"12013-12097",
"12013-12098",
"12013-12099",
"12013-12242",
"12013-12243",
"12013-12244"
],
"known_affected": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27",
"28",
"29",
"30"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-21315 Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability - HTML",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
},
{
"category": "self",
"summary": "CVE-2024-21315 Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability - CSAF",
"url": "https://msrc.microsoft.com/csaf/advisories/2024/msrc_cve-2024-21315.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "10.0.17763.5122:Security Update:https://support.microsoft.com/help/5032196",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
],
"url": "https://support.microsoft.com/help/5032196"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "10.0.20348.2113:Security Update:https://support.microsoft.com/help/5032198",
"product_ids": [
"6"
],
"url": "https://support.microsoft.com/help/5032198"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "6.2.9200.24569:Monthly Rollup:https://support.microsoft.com/help/5032247",
"product_ids": [
"7"
],
"url": "https://support.microsoft.com/help/5032247"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "10.0.22000.2600:Security Update:https://support.microsoft.com/help/5032192",
"product_ids": [
"8",
"9"
],
"url": "https://support.microsoft.com/help/5032192"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "10.0.19041.3693:Security Update:https://support.microsoft.com/help/5032189",
"product_ids": [
"10"
],
"url": "https://support.microsoft.com/help/5032189"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "10.0.19043.3693:Security Update:https://support.microsoft.com/help/5032189",
"product_ids": [
"11",
"12"
],
"url": "https://support.microsoft.com/help/5032189"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "10.0.10240.20308:Security Update:https://support.microsoft.com/help/5032199",
"product_ids": [
"13",
"14"
],
"url": "https://support.microsoft.com/help/5032199"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "10.0.14393.6452:Security Update:https://support.microsoft.com/help/5032197",
"product_ids": [
"15",
"16",
"17",
"18"
],
"url": "https://support.microsoft.com/help/5032197"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "6.3.9600.21813:Monthly Rollup:https://support.microsoft.com/help/5034819",
"product_ids": [
"19",
"20"
],
"url": "https://support.microsoft.com/help/5034819"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "10.0.22631.2715:Security Update:https://support.microsoft.com/help/5032190",
"product_ids": [
"21",
"26"
],
"url": "https://support.microsoft.com/help/5032190"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "10.0.22621.2715:Security Update:https://support.microsoft.com/help/5032190",
"product_ids": [
"22",
"27"
],
"url": "https://support.microsoft.com/help/5032190"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "10.0.19045.3693:Security Update:https://support.microsoft.com/help/5032189",
"product_ids": [
"23",
"24",
"28"
],
"url": "https://support.microsoft.com/help/5032189"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "10.0.25398.531:Security Update:https://support.microsoft.com/help/5032202",
"product_ids": [
"25"
],
"url": "https://support.microsoft.com/help/5032202"
},
{
"category": "vendor_fix",
"date": "2024-02-20T08:00:00.000Z",
"details": "6.2.9200.24710:Monthly Rollup:https://support.microsoft.com/help/5034830",
"product_ids": [
"29",
"30"
],
"url": "https://support.microsoft.com/help/5034830"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalsScore": 0.0,
"exploitCodeMaturity": "UNPROVEN",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"remediationLevel": "OFFICIAL_FIX",
"reportConfidence": "CONFIRMED",
"scope": "UNCHANGED",
"temporalScore": 6.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27",
"28",
"29",
"30"
]
}
],
"threats": [
{
"category": "impact",
"details": "Elevation of Privilege"
},
{
"category": "exploit_status",
"details": "Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely"
}
],
"title": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability"
}
]
}
WID-SEC-W-2024-0388
Vulnerability from csaf_certbund - Published: 2024-02-13 23:00 - Updated: 2024-02-20 23:00Summary
Microsoft Defender: Schwachstelle ermöglicht Privilegieneskalation
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Microsoft Defender ist eine Software zur Erkennung von schädlicher Software (Malware).
Angriff: Ein lokaler Angreifer kann eine Schwachstelle in Microsoft Defender ausnutzen, um seine Privilegien zu erhöhen.
Betroffene Betriebssysteme: - Windows
Es existiert eine Schwachstelle in Microsoft Defender. Der Fehler ist noch nicht im Detail beschrieben. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien auf "SYSTEM" zu erweitern.
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Defender for Endpoint for Windows
Microsoft / Defender
|
cpe:/a:microsoft:defender:for_endpoint_for_windows
|
for Endpoint for Windows |
References
4 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Microsoft Defender ist eine Software zur Erkennung von sch\u00e4dlicher Software (Malware).",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer kann eine Schwachstelle in Microsoft Defender ausnutzen, um seine Privilegien zu erh\u00f6hen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0388 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0388.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0388 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0388"
},
{
"category": "external",
"summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates vom 2024-02-13",
"url": "https://msrc.microsoft.com/update-guide"
},
{
"category": "external",
"summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates vom 2024-02-20 vom 2024-02-20",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315"
}
],
"source_lang": "en-US",
"title": "Microsoft Defender: Schwachstelle erm\u00f6glicht Privilegieneskalation",
"tracking": {
"current_release_date": "2024-02-20T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T18:05:16.198+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2024-0388",
"initial_release_date": "2024-02-13T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-02-13T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-02-20T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Informationen von Microsoft"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "for Endpoint for Windows",
"product": {
"name": "Microsoft Defender for Endpoint for Windows",
"product_id": "T022273",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:defender:for_endpoint_for_windows"
}
}
}
],
"category": "product_name",
"name": "Defender"
}
],
"category": "vendor",
"name": "Microsoft"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21315",
"notes": [
{
"category": "description",
"text": "Es existiert eine Schwachstelle in Microsoft Defender. Der Fehler ist noch nicht im Detail beschrieben. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien auf \"SYSTEM\" zu erweitern."
}
],
"product_status": {
"known_affected": [
"T022273"
]
},
"release_date": "2024-02-13T23:00:00.000+00:00",
"title": "CVE-2024-21315"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…