CVE-2024-30097

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jun 11, 2024
Updated: Jun 20, 2024
CWE ID 415

Summary

CVE-2024-30097 denotes a remote code execution vulnerability affecting Microsoft Speech Application Programming Interface (SAPI). An attacker can exploit this flaw by sending maliciously crafted speech data to a vulnerable system. Successful exploitation could allow the attacker to execute arbitrary code on the compromised system, potentially leading to significant security risks and potential data loss. Users are advised to install the available Microsoft security patch to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share