CVE-2024-49112

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 12, 2024
CWE ID 190

Summary

CVE-2024-49112 is a newly disclosed vulnerability that affects Windows Systems with the Lightweight Directory Access Protocol (LDAP). This issue grants attackers the ability to execute arbitrary code remotely, allowing them to take complete control of affected systems. Successful exploitation does not require user interaction and can occur when an LDAP server processes a maliciously crafted request. The vulnerability poses a significant risk to organizations that rely on LDAP for network authentication and authorization. Microsoft urges users to install the available patch as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows Server 2008

Affected Vendors

  • Microsoft