CVE-2024-49099
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Dec 12, 2024
CWE ID 125
Summary
CVE-2024-49099 is an Information Disclosure vulnerability affecting the Windows Wireless Wide Area Network Service (WwanSvc). This vulnerability allows an unauthenticated attacker to obtain sensitive information from the targeted system by sending specially crafted packets to the WwanSvc. Successful exploitation could result in the disclosure of wireless network configuration data, potentially leading to further attacks. Microsoft advises users to apply the available patch as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Microsoft Windows
- Microsoft Windows 11
- Microsoft Windows Server
Affected Vendors
- Microsoft