CVE-2024-49098

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Dec 12, 2024
CWE ID 125

Summary

CVE-2024-49098 is a newly disclosed vulnerability affecting the Windows Wireless Wide Area Network Service (WwanSvc). This issue results in an information disclosure, meaning that an attacker can gain access to sensitive data unintentionally exposed by the affected system. The vulnerability could potentially enable an attacker to obtain wireless network configuration information, which in turn could be used for further exploitation. Microsoft has acknowledged the issue and is working on a patch to address this vulnerability, which is recommended to be installed as soon as it becomes available to mitigate potential risks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows
  • Microsoft Windows 11
  • Microsoft Windows Server

Affected Vendors

  • Microsoft