CVE-2024-21324

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Apr 9, 2024
Updated: Apr 10, 2024
CWE ID 269

Summary

CVE-2024-21324 is a newly discovered vulnerability affecting Microsoft Defender for IoT. This elevation of privilege issue allows unauthenticated attackers to escalate their privileges and gain administrative control over affected systems. Successful exploitation could lead to significant security implications, including unauthorized access and data breaches. Microsoft has released a patch to address this vulnerability, and it is strongly recommended that all users apply the update as soon as possible to mitigate the risk. Failure to do so could result in serious consequences for IoT networks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share