CVE-2024-38130

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 13, 2024
Updated: Aug 16, 2024
CWE ID 122

Summary

CVE-2024-38130 is a newly identified vulnerability that affects the Windows Routing and Remote Access Service (RRAS). This issue grants an attacker the ability to execute arbitrary code remotely, allowing unauthorized access to affected systems. The exploitation of this vulnerability could lead to serious compromises, including data theft or system takeover. It is recommended that users apply the upcoming Microsoft patch as soon as it becomes available to mitigate this risk. Until then, implementing firewall rules to block RRAS access from untrusted networks can provide an additional layer of protection.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows
  • Microsoft Windows 11
  • Microsoft Windows Server 2008

Affected Vendors

  • Microsoft