Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cisa_kevCISACISA-KEV-CVE-2024-43491
HistorySep 10, 2024 - 12:00 a.m.

Microsoft Windows Update Use-After-Free Vulnerability

2024-09-1000:00:00
CISA
www.cisa.gov
123
microsoft windows
update
remote code execution

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.023

Percentile

90.0%

JSON

Microsoft Windows Update contains a use-after-free vulnerability that allows for remote code execution.

Related

mskb 2
cve 1
nvd 1
vulnrichment 1
mscve 1
attackerkb 1
cvelist 1
krebs 1
thn 1
talosblog 1
openvas 1
nessus 1
qualysblog 1
kaspersky 1
rapid7blog 1
mskb
mskb
KB5043936: Servicing stack update for Windows 10: September 10, 2024
2018-11-13 08:00:00
September 10, 2024—KB5043083 (OS Build 10240.20766)
2024-09-10 07:00:00
cve
cve
CVE-2024-43491
2024-09-10 17:15:36
nvd
nvd
CVE-2024-43491
2024-09-10 17:15:36
vulnrichment
vulnrichment
CVE-2024-43491 Microsoft Windows Update Remote Code Execution Vulnerability
2024-09-10 16:54:20
mscve
mscve
Microsoft Windows Update Remote Code Execution Vulnerability
2024-09-10 07:00:00
attackerkb
attackerkb
CVE-2024-43491
2024-09-10 00:00:00
cvelist
cvelist
CVE-2024-43491 Microsoft Windows Update Remote Code Execution Vulnerability
2024-09-10 16:54:20
krebs
krebs
Bug Left Some Windows PCs Dangerously Unpatched
2024-09-10 21:46:21
thn
thn
Microsoft Issues Patches for 79 Flaws, Including 3 Actively Exploited Windows Flaws
2024-09-11 06:53:00
talosblog
talosblog
Four zero-days included in group of 79 vulnerabilities Microsoft discloses, including one with 9.8 severity score
2024-09-10 19:30:18
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5043083)
2024-09-11 00:00:00
nessus
nessus
KB5043083: Windows 10 LTS 1507 Security Update (September 2024)
2024-09-10 00:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, September 2024 Security Update Review
2024-09-10 19:31:38
kaspersky
kaspersky
KLA73227 Multiple vulnerabilities in Microsoft Windows
2024-09-10 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - September 2024
2024-09-10 20:49:21

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.023

Percentile

90.0%

JSON
Related for CISA-KEV-CVE-2024-43491
mskb2cve1nvd1vulnrichment1mscve1attackerkb1cvelist1krebs1thn1talosblog1openvas1nessus1qualysblog1kaspersky1rapid7blog1