CVE-2024-26173

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 12, 2024
Updated: Jun 11, 2024
CWE ID 20

Summary

CVE-2024-26173 is a newly disclosed Windows Kernel Elevation of Privilege vulnerability. Malicious actors can exploit this flaw to gain elevated system privileges, potentially allowing them to install unauthorized software, modify data, or gain unauthorized access to sensitive information. This vulnerability could be exploited remotely, posing a significant threat to organizations and individuals using unpatched Windows systems. Microsoft has released a security update to address the issue and it is recommended that all Windows users install the patch as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows 10
  • Microsoft Windows 11
  • Microsoft Windows
  • Microsoft Windows Server 2008

Affected Vendors

  • Microsoft