Lucene search

K
cve[email protected]CVE-2024-30007
HistoryMay 14, 2024 - 5:16 p.m.

CVE-2024-30007

2024-05-1417:16:37
CWE-269
web.nvd.nist.gov
54
cve-2024-30007
nvd
elevation of privilege
microsoft

8.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

8.9%

Microsoft Brokering File System Elevation of Privilege Vulnerability

Affected configurations

Vulners
Node
microsoftwindows_server_23h2Range10.0.0–10.0.25398.887
VendorProductVersionCPE
microsoftwindows_server_23h2*cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
    "cpes": [
      "cpe:2.3:o:microsoft:windows_server_23h2:10.0.25398.887:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.25398.887",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

8.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

8.9%