CVE-2024-38145

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 13, 2024
Updated: Aug 16, 2024
CWE ID 476

Summary

CVE-2024-38145 is a newly disclosed vulnerability affecting Windows Layer-2 Bridge Network Drivers. This issue allows an attacker to trigger a denial of service condition by sending specific packets to a targeted system. Successful exploitation could result in a crash or reboot of the affected driver, causing network connectivity disruptions and potentially leading to more serious consequences if used in conjunction with other attacks. It is recommended that affected systems be updated with the latest Microsoft patches to mitigate this risk. Users are also urged to practice good network security hygiene, such as implementing firewalls and monitoring for unusual network activity.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows
  • Microsoft Windows 11

Affected Vendors

  • Microsoft