VDB
CVE-2024-43614
CVE-2024-43614
PUBLISHED
Es besteht eine Schwachstelle in Microsoft Defender. Dieser Fehler ist noch nicht im Detail veröffentlicht worden. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.
EPSS 0.38% · 59.8th percentile
Risk Scores
EPSS Score
0.38%
59.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Defender for Endpoint for Linux |
Timeline
- Oct 8, 2024 CVE Published
- Oct 8, 2024 PoC Published
- Oct 9, 2024 EPSS Score
- Oct 14, 2024 Coalition ESS Score
- Oct 22, 2024 Coalition ESS Score
- Oct 28, 2024 EPSS Score
- Nov 16, 2024 EPSS Score
- Dec 5, 2024 EPSS Score
- Dec 24, 2024 EPSS Score
- Jan 12, 2025 EPSS Score
- Jan 31, 2025 EPSS Score
- Feb 19, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3122.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3122 advisory
- https://msrc.microsoft.com/update-guide/ advisory
- https://www.synacktiv.com/advisories/microsoft-configuration-manager-configmgr-2403-unauthenticated-sql-injections advisory