CVE-2024-38187

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 13, 2024
Updated: Aug 16, 2024
CWE ID 822

Summary

CVE-2024-38187 is a newly disclosed Windows Kernel-Mode Driver vulnerability. Maliciously crafted input can be used to manipulate the driver, granting an attacker elevated privileges. This vulnerability poses a serious risk for systems as it allows an attacker to bypass security restrictions and execute unauthorized commands with administrative access. Exploitation of this vulnerability could lead to the installation of malware, unauthorized access to sensitive data, or further system compromises. Microsoft has not yet released a patch for this issue, leaving affected systems vulnerable until a fix is available.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share