CVE-2024-21322

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Apr 9, 2024
Updated: Apr 10, 2024
CWE ID 77

Summary

CVE-2024-21322 is a newly disclosed remote code execution vulnerability affecting Microsoft Defender for IoT. This issue allows an attacker to execute arbitrary code on targeted IoT devices with the Defender software installed. Successful exploitation can lead to unauthorized system access, data theft, and potential disruption of IoT operations. Organizations using Microsoft Defender for IoT are strongly advised to apply the recommended patches as soon as possible to mitigate this risk. Failure to address this vulnerability could result in significant damages.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share