CVE-2024-21305

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Jan 9, 2024
Updated: Jun 11, 2024
CWE ID 732

Summary

CVE-2024-21305 is a newly disclosed vulnerability that affects Hypervisor-Protected Code Integrity (HVCI), a security feature designed to prevent unauthorized code from running on the host operating system. The vulnerability allows an attacker to bypass this protection and execute malicious code on the host system. This can result in unauthorized access, data theft, and other malicious activities. The exact details of the vulnerability are not yet publicly available, but it is recommended that system administrators apply the forthcoming patch as soon as it becomes available to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share