CVE-2024-43530

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 12, 2024
Updated: Nov 13, 2024
CWE ID 284

Summary

CVE-2024-43530 is a newly identified stack elevation of privilege vulnerability affecting Windows Update. Hackers could exploit this flaw to gain administrative control on vulnerable systems, bypassing existing security measures. Successful attacks may lead to unauthorized system modifications, data theft, or other malicious activities. Microsoft is urged to release a patch to mitigate this risk as soon as possible. Users are advised to apply security updates promptly to protect their systems from potential exploitation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows
  • Microsoft Windows 11

Affected Vendors

  • Microsoft