CVE-2024-38151

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 13, 2024
Updated: Aug 14, 2024
CWE ID 125

Summary

CVE-2024-38151 is a newly disclosed vulnerability affecting the Windows Kernel. This issue permits an attacker to gain unauthorized access to sensitive information, leading to a potential security breach. The vulnerability is classified as an information disclosure weakness, meaning it allows unintended data exposure. By exploiting this vulnerability, an attacker can potentially obtain data related to system configurations, user privileges, or other valuable information. Microsoft is currently working on a patch to address this vulnerability, and users are strongly encouraged to install the update as soon as it becomes available. Until then, it is recommended to implement additional security measures to mitigate potential risks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows
  • Microsoft Windows 11
  • Microsoft Windows Server 2008

Affected Vendors

  • Microsoft