Lucene search
MicrosoftMS:CVE-2024-38137HistoryAug 13, 2024 - 7:00 a.m.
Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability
2024-08-1307:00:00
Microsoft
msrc.microsoft.com
5
windows resource manager
psm service
extension
elevation of privilege
vulnerability
microsoft
CVSS3
7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.1
Confidence
Low
EPSS
0.001
Percentile
22.4%
Affected configurations
Node
microsoftwindows_11_24h2Range<10.0.26100.1457
ORmicrosoftwindows_11_24h2Range<10.0.26100.1457
ORmicrosoftwindows_server_23h2Range<10.0.25398.1085
ORmicrosoftwindows_11_23h2Range<10.0.22631.4037
ORmicrosoftwindows_11_23h2Range<10.0.22631.4037
ORmicrosoftwindows_10_22h2Range<10.0.19045.4780
ORmicrosoftwindows_10_22h2Range<10.0.19045.4780
ORmicrosoftwindows_10_22h2Range<10.0.19045.4780
ORmicrosoftwindows_11_22h2Range<10.0.22621.4037
ORmicrosoftwindows_11_22h2Range<10.0.22621.4037
ORmicrosoftwindows_10_21h2Range<10.0.19044.4780
ORmicrosoftwindows_10_21h2Range<10.0.19044.4780
ORmicrosoftwindows_10_21h2Range<10.0.19044.4780
ORmicrosoftwindows_11_21h2Range<10.0.22000.3147
ORmicrosoftwindows_11_21h2Range<10.0.22000.3147
ORmicrosoftwindows_server_2022Range<10.0.20348.2655
ORmicrosoftwindows_server_2022Range<10.0.20348.2655
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_11_24h2 | * | cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:*:* |
| microsoft | windows_server_23h2 | * | cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_23h2 | * | cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_22h2 | * | cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_22h2 | * | cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_21h2 | * | cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_21h2 | * | cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2022 | * | cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2024-38137
2024-08-13 18:15:17
cvelist
cvelist
cve
cve
CVE-2024-38137
2024-08-13 18:15:17
vulnrichment
vulnrichment
nessus
nessus
KB5041592: Windows 11 version 21H2 Security Update (August 2024)
2024-08-13 00:00:00
KB5041580: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (August 2024)
2024-08-13 00:00:00
KB5041571: Windows 11 Version 24H2 Security Update (August 2024)
2024-08-13 00:00:00
mskb
mskb
August 13, 2024âKB5041592 (OS Build 22000.3147)
2024-08-13 07:00:00
August 13, 2024âKB5041580 (OS Builds 19044.4780 and 19045.4780)
2024-08-13 07:00:00
August 13, 2024âKB5041571 (OS Build 26100.1457)
2024-08-13 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5041592)
2024-08-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5041580)
2024-08-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5041585)
2024-08-14 00:00:00
kaspersky
kaspersky
KLA71484 Multiple vulnerabilities in Microsoft Windows
2024-08-13 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - August 2024
2024-08-13 23:36:30
CVSS3
7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.1
Confidence
Low
EPSS
0.001
Percentile
22.4%
Related for MS:CVE-2024-38137