CVE-2024-37284

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 21, 2025
CWE ID 755

Summary

CVE-2024-37284 is a vulnerability affecting Elastic Defend on Windows systems. It arises from the application's inability to handle alternate encoding properly when scanning files or processes. This results in an uncaught exception, causing Elastic Defend to crash. Consequently, the software fails to quarantine infected files and terminate problematic processes, potentially leaving systems at risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share