Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMicrosoftCVELIST:CVE-2024-30072
HistoryJun 11, 2024 - 4:59 p.m.

CVE-2024-30072 Microsoft Event Trace Log File Parsing Remote Code Execution Vulnerability

2024-06-1116:59:41
CWE-190
microsoft
www.cve.org
4
cve-2024-30072
microsoft
event trace
log file
parsing
remote code execution
vulnerability

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

0.001 Low

EPSS

Percentile

19.6%

JSON

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Windows 11 version 22H2",
    "cpes": [
      "cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.3737:*:*:*:*:*:arm64:*",
      "cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.3737:*:*:*:*:*:x64:*"
    ],
    "platforms": [
      "ARM64-based Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.22621.3737",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows 11 version 22H3",
    "cpes": [
      "cpe:2.3:o:microsoft:windows_11_23H2:10.0.22631.3737:*:*:*:*:*:arm64:*"
    ],
    "platforms": [
      "ARM64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.22631.3737",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows 11 Version 23H2",
    "cpes": [
      "cpe:2.3:o:microsoft:windows_11_23H2:10.0.22631.3737:*:*:*:*:*:x64:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.22631.3737",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
    "cpes": [
      "cpe:2.3:o:microsoft:windows_server_23h2:10.0.25398.950:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.25398.950",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Related

nvd 1
mscve 1
vulnrichment 1
cve 1
nessus 2
mskb 2
openvas 1
kaspersky 1
rapid7blog 1
nvd
nvd
CVE-2024-30072
2024-06-11 17:15:53
mscve
mscve
Microsoft Event Trace Log File Parsing Remote Code Execution Vulnerability
2024-06-11 07:00:00
vulnrichment
vulnrichment
CVE-2024-30072 Microsoft Event Trace Log File Parsing Remote Code Execution Vulnerability
2024-06-11 16:59:41
cve
cve
CVE-2024-30072
2024-06-11 17:15:53
nessus
nessus
KB5039212: Windows 11 version 22H2 / Windows 11 version 23H2 Security Update (June 2024)
2024-06-11 00:00:00
KB5039236: Windows 11 version 22H2 / Windows Server version 23H2 Security Update (June 2024)
2024-06-11 00:00:00
mskb
mskb
June 11, 2024—KB5039236 (OS Build 25398.950)
2024-06-11 07:00:00
June 11, 2024—KB5039212 (OS Builds 22621.3737 and 22631.3737)
2024-06-11 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5039212)
2024-06-12 00:00:00
kaspersky
kaspersky
KLA68915 Multiple vulnerabilities in Microsoft Windows
2024-06-11 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - June 2024
2024-06-11 19:43:48

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

0.001 Low

EPSS

Percentile

19.6%

JSON
Related for CVELIST:CVE-2024-30072
nvd1mscve1vulnrichment1cve1nessus2mskb2openvas1kaspersky1rapid7blog1