VDB

CVE-2024-38014

CVE-2024-38014 PUBLISHED KEV

In Microsoft Windows 10, Microsoft Windows 11, Microsoft Windows Server, Microsoft Windows Server 2012, Microsoft Windows Server 2012 R2, Microsoft Windows Server 2016, Microsoft Windows Server 2019 und Microsoft Windows Server 2022 besteht eine Schwachstelle. Diese Schwachstelle betrifft den Windows Installer. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um Rechte auf SYSTEM-Ebene zu erlangen.

EPSS 12.83% · 94.2th percentile

Risk Scores

EPSS Score
12.83%
94.2th percentile

Affected Products

VendorProductVersions
MicrosoftMicrosoft Windows Server 2012 R2
MicrosoftMicrosoft Windows 10 Version 22H2
MicrosoftMicrosoft Windows Server 2008 R2 SP1
MicrosoftMicrosoft Windows 11 version 21H2
MicrosoftMicrosoft Windows Server 2008 SP2
MicrosoftMicrosoft Windows Server 2022 23H2 Edition
MicrosoftMicrosoft Windows Server 2022
MicrosoftMicrosoft Windows 10 Version 1809
MicrosoftMicrosoft Windows 11 Version 22H2
MicrosoftMicrosoft Windows 10
MicrosoftMicrosoft Windows 10 Version 1607
MicrosoftMicrosoft Windows 11 Version 24H2
MicrosoftMicrosoft Windows Server 2012
MicrosoftMicrosoft Windows Server 2016
MicrosoftMicrosoft Windows 11 Version 23H2
MicrosoftMicrosoft Windows Server 2019
HitachiHitachi Storage Virtual Storage Platform
MicrosoftMicrosoft Windows 10 Version 21H2

Exploit Intelligence

…and 5 more exploits

Timeline

  • Sep 10, 2024 CISA KEV Added
  • Sep 10, 2024 CVE Published
  • Sep 11, 2024 EPSS Score
  • Oct 4, 2024 Coalition ESS Score
  • Oct 21, 2024 EPSS Score
  • Nov 9, 2024 EPSS Score
  • Dec 17, 2024 EPSS Score
  • Dec 20, 2024 EPSS Score
  • Jan 20, 2025 Coalition ESS Score
  • Jan 28, 2025 EPSS Score
  • Jan 29, 2025 EPSS Score
  • Feb 18, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›