CVE-2024-38132
CVSS 3.1 Score 7.5 of 10 (high)
Details
Summary
CVE-2024-38132 is a newly disclosed vulnerability affecting Windows Network Address Translation (NAT) functionality. This issue permits an attacker to initiate a Denial of Service (DoS) attack by sending specially crafted packets to a targeted system. The vulnerability arises due to an improper handling of certain NAT packets, resulting in excessive CPU utilization and subsequent service disruption. While no exploit code has been publicly released yet, it is recommended that affected organizations apply the forthcoming Microsoft security update to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Microsoft Windows
- Microsoft Windows 11
Affected Vendors
- Microsoft