Lucene search
MicrosoftCVELIST:CVE-2024-38100HistoryJul 09, 2024 - 5:02 p.m.
CVE-2024-38100 Windows File Explorer Elevation of Privilege Vulnerability
2024-07-0917:02:36
CWE-284
microsoft
www.cve.org
9
cve-2024
windows
file explorer
elevation of privilege
vulnerability
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS
0
Percentile
9.2%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Windows Server 2019",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.6054:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.17763.6054",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2019 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.6054:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.17763.6054",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2022",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.2582:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.20348.2582",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_23h2:10.0.25398.1009:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.25398.1009",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2016",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7159:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.14393.7159",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2016 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7159:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.14393.7159",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
cve
cve
CVE-2024-38100
2024-07-09 17:15:46
nvd
nvd
CVE-2024-38100
2024-07-09 17:15:46
vulnrichment
vulnrichment
CVE-2024-38100 Windows File Explorer Elevation of Privilege Vulnerability
2024-07-09 17:02:36
mscve
mscve
Windows File Explorer Elevation of Privilege Vulnerability
2024-07-09 07:00:00
githubexploit
githubexploit
Exploit for Improper Access Control in Microsoft
2024-08-06 18:26:50
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, July 2024 Security Update Review
2024-07-09 19:09:34
nessus
nessus
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5040430)
2024-07-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5040434)
2024-07-10 00:00:00
kaspersky
kaspersky
KLA70416 Multiple vulnerabilities in Microsoft Windows
2024-07-09 00:00:00
mskb
mskb
July 9, 2024âKB5040430 (OS Build 17763.6054)
2024-08-13 07:00:00
July 9, 2024âKB5040434 (OS Build 14393.7159)
2024-08-13 07:00:00
July 9, 2024âKB5040437 (OS Build 20348.2582)
2024-08-13 07:00:00
rapid7blog
rapid7blog
Patch Tuesday - July 2024
2024-07-09 20:03:58
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS
0
Percentile
9.2%
Related for CVELIST:CVE-2024-38100