Lucene search
CISACISA-KEV-CVE-2024-38178HistoryAug 13, 2024 - 12:00 a.m.
Microsoft Windows Scripting Engine Memory Corruption Vulnerability
2024-08-1300:00:00
CISA
www.cisa.gov
31
microsoft windows
scripting engine
memory corruption
vulnerability
remote code execution
crafted url
unauthenticated attacker
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.6
Confidence
High
EPSS
0.016
Percentile
87.9%
Microsoft Windows Scripting Engine contains a memory corruption vulnerability that allows unauthenticated attacker to initiate remote code execution via a specially crafted URL.
Related
mskb
mskb
KB5041770: Cumulative security update for Internet Explorer: August 13, 2024
2024-08-13 07:00:00
August 13, 2024βKB5041782 (OS Build 10240.20751)
2024-08-13 07:00:00
August 13, 2024βKB5041828 (Monthly Rollup)
2024-08-13 07:00:00
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2024-08-13 07:00:00
cvelist
cvelist
CVE-2024-38178 Scripting Engine Memory Corruption Vulnerability
2024-08-13 17:29:50
openvas
openvas
Microsoft Internet Explorer Memory Corruption Vulnerability (KB5041770)
2024-08-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5041782)
2024-08-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5041580)
2024-08-14 00:00:00
cve
cve
CVE-2024-38178
2024-08-13 18:15:26
attackerkb
attackerkb
CVE-2024-38178
2024-08-13 00:00:00
vulnrichment
vulnrichment
CVE-2024-38178 Scripting Engine Memory Corruption Vulnerability
2024-08-13 17:29:50
nvd
nvd
CVE-2024-38178
2024-08-13 18:15:26
ics
ics
CISA Adds Six Known Exploited Vulnerabilities to Catalog
2024-08-13 12:00:00
krebs
krebs
Six 0-Days Lead Microsoftβs August 2024 Patch Push
2024-08-13 21:43:05
talosblog
talosblog
thn
thn
Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-Days
2024-08-14 05:48:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, August 2024 Security Update Review
2024-08-13 20:31:30
nessus
nessus
KB5041782: Windows 10 LTS 1507 Security Update (August 2024)
2024-08-13 00:00:00
KB5041828: Windows Server 2012 R2 Security Update (August 2024)
2024-08-13 00:00:00
kaspersky
kaspersky
KLA71485 Multiple vulnerabilities in Microsoft Products (ESU)
2024-08-13 00:00:00
KLA71484 Multiple vulnerabilities in Microsoft Windows
2024-08-13 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - August 2024
2024-08-13 23:36:30
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.6
Confidence
High
EPSS
0.016
Percentile
87.9%
Related for CISA-KEV-CVE-2024-38178