VDB

GCVE-VVD-NCSC-2024-397

GCVE-VVD-NCSC-2024-397
Advisory PublishedCVSS 9.8/10
Vulnetix · Advisory published October 8, 2024
Microsoft heeft kwetsbaarheden verholpen in System Center.
Download JSON Open in Console

Weaknesses (CWE)

CWE-89Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')CWE-23Relative Path Traversal

Risk Scores

CVSS 3.1
9.8/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Affected Products

VendorProductVersionsPlatforms
microsoftmicrosoft_configuration_manager
microsoftmicrosoft_defender_for_endpoint_for_linux

Aliases

CVE-2024-43614CVE-2024-43468

Transitive aliases

GHSA-gx6j-7m5h-xh87EUVD-2024-40363MSRC_CVE-2024-43468VVD-CISA-2024-43468GHSA-m786-h9gp-8q53EUVD-2024-40737VVD-CISA-2024-43614MSRC_CVE-2024-43614BDU:2024-07944BDU:2024-08055

References

advisory
advisory
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›