7.3
CVE-2024-38081
- EPSS 0.59%
- Published 09.07.2024 17:15:43
- Last modified 21.11.2024 09:24:51
- Source secure@microsoft.com
- Teams watchlist Login
- Open Login
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
Data is provided by the National Vulnerability Database (NVD)
Microsoft ≫ .Net Framework Version4.6.2
Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1 HwPlatformx64
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ .Net Framework Version4.7
Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1 HwPlatformx64
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ .Net Framework Version4.7.1
Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1 HwPlatformx64
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ .Net Framework Version4.7.2
Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1 HwPlatformx64
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ .Net Framework Version3.5
Microsoft ≫ Windows 10 1607 HwPlatformx64
Microsoft ≫ Windows 10 1607 HwPlatformx86
Microsoft ≫ Windows 10 1809
Microsoft ≫ Windows 10 21h2
Microsoft ≫ Windows 10 22h2
Microsoft ≫ Windows 11 21h2
Microsoft ≫ Windows Server 2008 Versionr2 HwPlatformx64
Microsoft ≫ Windows Server 2012 HwPlatformx64
Microsoft ≫ Windows Server 2012 Versionr2 HwPlatformx64
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows Server 2022
Microsoft ≫ Windows 10 1607 HwPlatformx86
Microsoft ≫ Windows 10 1809
Microsoft ≫ Windows 10 21h2
Microsoft ≫ Windows 10 22h2
Microsoft ≫ Windows 11 21h2
Microsoft ≫ Windows Server 2008 Versionr2 HwPlatformx64
Microsoft ≫ Windows Server 2012 HwPlatformx64
Microsoft ≫ Windows Server 2012 Versionr2 HwPlatformx64
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows Server 2022
Microsoft ≫ .Net Framework Version4.8
Microsoft ≫ Windows 10 1607 HwPlatformx64
Microsoft ≫ Windows 10 1607 HwPlatformx86
Microsoft ≫ Windows 10 1809
Microsoft ≫ Windows 10 21h2
Microsoft ≫ Windows 10 22h2
Microsoft ≫ Windows 11 21h2
Microsoft ≫ Windows Server 2008 Versionr2 HwPlatformx64
Microsoft ≫ Windows Server 2012 HwPlatformx64
Microsoft ≫ Windows Server 2012 Versionr2 HwPlatformx64
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows Server 2022
Microsoft ≫ Windows 10 1607 HwPlatformx86
Microsoft ≫ Windows 10 1809
Microsoft ≫ Windows 10 21h2
Microsoft ≫ Windows 10 22h2
Microsoft ≫ Windows 11 21h2
Microsoft ≫ Windows Server 2008 Versionr2 HwPlatformx64
Microsoft ≫ Windows Server 2012 HwPlatformx64
Microsoft ≫ Windows Server 2012 Versionr2 HwPlatformx64
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows Server 2022
Microsoft ≫ .Net Framework Version3.5.1
Microsoft ≫ .Net Framework Version3.5
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx64
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ Windows Server 2012 HwPlatformx64
Microsoft ≫ Windows Server 2012 Versionr2 HwPlatformx64
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ Windows Server 2012 HwPlatformx64
Microsoft ≫ Windows Server 2012 Versionr2 HwPlatformx64
Microsoft ≫ .Net Framework Version3.0 Updatesp2
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx64
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ .Net Framework Version2.0 Updatesp2
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx64
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ .Net Framework Version4.6.2
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx64
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ .Net Framework Version4.8.1
Microsoft ≫ Visual Studio 2022 Version >= 17.4 < 17.4.21
Microsoft ≫ Visual Studio 2022 Version >= 17.6 < 17.6.17
Microsoft ≫ Visual Studio 2022 Version >= 17.8 < 17.8.12
Microsoft ≫ .Net Framework Version3.5
Microsoft ≫ Windows 10 1607 HwPlatformx64
Microsoft ≫ Windows 10 1607 Version- HwPlatformx86
Microsoft ≫ Windows 10 1809
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows 10 1607 Version- HwPlatformx86
Microsoft ≫ Windows 10 1809
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Microsoft ≫ .Net Framework Version4.7.2
Microsoft ≫ Windows 10 1607 HwPlatformx64
Microsoft ≫ Windows 10 1607 Version- HwPlatformx86
Microsoft ≫ Windows 10 1809
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows 10 1607 Version- HwPlatformx86
Microsoft ≫ Windows 10 1809
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.59% | 0.683 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| secure@microsoft.com | 7.3 | 1.3 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
|
CWE-59 Improper Link Resolution Before File Access ('Link Following')
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.