CVE-2024-21302

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Aug 8, 2024
Updated: Sep 18, 2024
CWE ID 284

Summary

CVE-2024-21302: Microsoft is addressing an elevation of privilege vulnerability in Windows systems with Virtualization Based Security (VBS), including certain Azure Virtual Machine SKUs. This issue allows an attacker with administrator privileges to replace current Windows system files with outdated versions, potentially reintroducing old vulnerabilities and bypassing VBS security features. Affected versions of Windows include Windows 10, Windows 11, Windows Server 2016, and higher. Microsoft is working on a security update to mitigate the threat, but in the meantime, customers can follow recommendations in the CVE to reduce risks and protect their systems. An opt-in revocation policy mitigation is now available as part of the August 2024 security updates, but it may introduce new risks that should be carefully considered before implementation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows
  • Microsoft Windows 11

Affected Vendors

  • Microsoft