8.8
CVE-2024-49093
- EPSS 0.51%
- Veröffentlicht 12.12.2024 02:04:34
- Zuletzt bearbeitet 08.01.2025 12:31:26
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
LoginWindows Resilient File System (ReFS) Elevation of Privilege Vulnerability
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Windows 11 24h2 Version < 10.0.26100.2605
Microsoft ≫ Windows Server 2025 Version < 10.0.26100.2605
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.51% | 0.656 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| secure@microsoft.com | 8.8 | 2 | 6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
|
CWE-681 Incorrect Conversion between Numeric Types
When converting from one data type to another, such as long to integer, data can be omitted or translated in a way that produces unexpected values. If the resulting values are used in a sensitive context, then dangerous behaviors may occur.