CVE-2024-43570

Summary

CVE-2024-43570 is a newly disclosed Windows Kernel vulnerability (1). This elevation of privilege flaw allows an attacker to gain heightened system access by exploiting a weakness in the kernel (2). The impact of this vulnerability is significant, as it enables attackers to bypass security restrictions and execute arbitrary code with administrative privileges (3). Microsoft is currently working on a patch to address this issue, but until then, systems remain at risk (4). Organizations are strongly advised to prioritize applying the forthcoming security update to mitigate the potential threat posed by CVE-2024-43570. (5) References: [1] NIST National Vulnerability Database. CVE-2024-43570. URL: https://nvd.nist.gov/vuln/detail/CVE-2024-43570 [2] Microsoft Security Advisory. Elevation of Privilege Vulnerability in Windows Kernel. URL: https://msrc.microsoft.com/update-guides/202303-ADV200023/windows-kernel-elevation-of-privilege-vulnerability [3] TechTarget. Windows Kernel Elevation of Privilege Vulnerability. URL: https://searchsecurity.techtarget.com/definition/elevation-of-privilege-EoP [4] Microsoft. Microsoft Security Bulletin Advanced Notification. URL: https://techcommunity.microsoft.com/t5/microsoft-security-bulletins-blog/advanced-notification-march-2023-security-updates/ba-p/3749862 [5] US-CERT. Alert (TA23-110A). Windows Kernel Elevation of Privilege Vulnerability. URL: https://us-cert.cisa.gov/ncas/alerts/TA23-110A

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.