CVE-2024-20652
CVSS 3.1 Score 8.1 of 10 (high)
Details
Summary
CVE-2024-20652 is a newly disclosed vulnerability affecting Windows HTML Platforms. This security flaw permits bypassing security features, potentially allowing an attacker to execute malicious code within a web browser. This vulnerability could be exploited through specially crafted HTML pages or emails, and successful exploitation may lead to the compromise of a vulnerable system. Microsoft is currently working on releasing a patch to mitigate this issue, but until then, it is recommended that users apply additional security measures, such as enabling Enhanced Security Configuration for Internet Explorer and using up-to-date antivirus software.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.