7.8
CVE-2024-21315
- EPSS 0.27%
- Published 13.02.2024 18:15:48
- Last modified 21.11.2024 08:54:05
- Source secure@microsoft.com
- Teams watchlist Login
- Open Login
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
Data is provided by the National Vulnerability Database (NVD)
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 10.0.25398.531
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 10.0.19045.3693
Microsoft ≫ Windows 10 22h2 Version- HwPlatformarm64
Microsoft ≫ Windows 10 22h2 Version- HwPlatformx64
Microsoft ≫ Windows 10 22h2 Version- HwPlatformx64
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 10.0.22621.2715
Microsoft ≫ Windows 11 22h2 Version- HwPlatformarm64
Microsoft ≫ Windows 11 23h2 Version- HwPlatformarm64
Microsoft ≫ Windows 11 23h2 Version- HwPlatformarm64
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 6.3.9600.21813
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 10.0.14393.6452
Microsoft ≫ Windows 10 1607 Version- HwPlatformx64
Microsoft ≫ Windows 10 1607 Version- HwPlatformx86
Microsoft ≫ Windows Server 2016 Version-
Microsoft ≫ Windows 10 1607 Version- HwPlatformx86
Microsoft ≫ Windows Server 2016 Version-
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 6.2.9200.24710
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 10.0.19045.3693
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 10.0.22621.2715
Microsoft ≫ Windows 11 22h2 Version- HwPlatformx64
Microsoft ≫ Windows 11 23h2 Version- HwPlatformx64
Microsoft ≫ Windows 11 23h2 Version- HwPlatformx64
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 10.0.10240.20308
Microsoft ≫ Windows 10 1507 Version- HwPlatformx64
Microsoft ≫ Windows 10 1507 Version- HwPlatformx86
Microsoft ≫ Windows 10 1507 Version- HwPlatformx86
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 10.0.19043.3693
Microsoft ≫ Windows 10 21h2 Version- HwPlatformarm64
Microsoft ≫ Windows 10 21h2 Version- HwPlatformx64
Microsoft ≫ Windows 10 21h2 Version- HwPlatformx86
Microsoft ≫ Windows 10 21h2 Version- HwPlatformx64
Microsoft ≫ Windows 10 21h2 Version- HwPlatformx86
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 10.0.22000.2600
Microsoft ≫ Windows 11 21h2 Version- HwPlatformarm64
Microsoft ≫ Windows 11 21h2 Version- HwPlatformx64
Microsoft ≫ Windows 11 21h2 Version- HwPlatformx64
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 6.2.9200.24569
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 10.0.20348.2113
Microsoft ≫ Defender For Endpoint SwPlatformwindows Version < 10.0.17763.5122
Microsoft ≫ Windows 10 1809 Version- HwPlatformarm64
Microsoft ≫ Windows 10 1809 Version- HwPlatformx64
Microsoft ≫ Windows 10 1809 Version- HwPlatformx86
Microsoft ≫ Windows Server 2019 Version-
Microsoft ≫ Windows 10 1809 Version- HwPlatformx64
Microsoft ≫ Windows 10 1809 Version- HwPlatformx86
Microsoft ≫ Windows Server 2019 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.27% | 0.505 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| secure@microsoft.com | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.