CVE-2024-26201

CVSS 3.1 Score 6.6 of 10 (medium)

Details

Published Mar 12, 2024
Updated: Apr 11, 2024
CWE ID 284

Summary

CVE-2024-26201 is an elevation of privilege vulnerability affecting the Microsoft Intune Linux Agent. An attacker who successfully exploits this flaw can gain heightened system access, potentially leading to serious data compromise or unauthorized software installation. The agent, designed to manage and configure Linux systems within an organization's network using Microsoft Intune, is the affected component. Microsoft has released a patch to mitigate this issue, and administrators are urged to apply it promptly to safeguard their systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share