Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2024-30040
HistoryMay 14, 2024 - 5:17 p.m.

CVE-2024-30040

2024-05-1417:17:12
CWE-20
[email protected]
web.nvd.nist.gov
11
windows security bypass vulnerability

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.004

Percentile

74.8%

JSON

Windows MSHTML Platform Security Feature Bypass Vulnerability

Affected configurations

Nvd
Node
microsoftwindows_10_1507Range<10.0.10240.20651
OR
microsoftwindows_10_1607Range<10.0.14393.6981x64
OR
microsoftwindows_10_1607Range<10.0.14393.6981x86
OR
microsoftwindows_10_1809Range<10.0.17763.5820
OR
microsoftwindows_10_21h2Range<10.0.19044.4412
OR
microsoftwindows_10_22h2Range<10.0.19045.4412
OR
microsoftwindows_11_21h2Range<10.0.22000.2960
OR
microsoftwindows_11_22h2Range<10.0.22621.3593
OR
microsoftwindows_11_23h2Range<10.0.22631.3593
OR
microsoftwindows_server_2016Range<10.0.14393.6981
OR
microsoftwindows_server_2019Range<10.0.17763.5820
OR
microsoftwindows_server_2022Range<10.0.20348.2458
OR
microsoftwindows_server_2022_23h2Range<10.0.25398.887
VendorProductVersionCPE
microsoftwindows_10_1507*cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:*
microsoftwindows_10_1607*cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*
microsoftwindows_10_1607*cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*
microsoftwindows_10_1809*cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*
microsoftwindows_10_21h2*cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*
microsoftwindows_10_22h2*cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*
microsoftwindows_11_21h2*cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*
microsoftwindows_11_22h2*cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*
microsoftwindows_11_23h2*cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*
microsoftwindows_server_2016*cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
Rows per page:
1-10 of 131

Related

vulnrichment 1
attackerkb 1
cvelist 1
mscve 1
cisa_kev 1
cve 1
krebs 1
qualysblog 1
thn 1
nessus 8
openvas 5
mskb 9
kaspersky 1
rapid7blog 1
vulnrichment
vulnrichment
CVE-2024-30040 Windows MSHTML Platform Security Feature Bypass Vulnerability
2024-05-14 16:57:27
attackerkb
attackerkb
CVE-2024-30040
2024-05-14 00:00:00
cvelist
cvelist
CVE-2024-30040 Windows MSHTML Platform Security Feature Bypass Vulnerability
2024-05-14 16:57:27
mscve
mscve
Windows MSHTML Platform Security Feature Bypass Vulnerability
2024-05-14 07:00:00
cisa_kev
cisa_kev
Microsoft Windows MSHTML Platform Security Feature Bypass Vulnerability
2024-05-14 00:00:00
cve
cve
CVE-2024-30040
2024-05-14 17:17:12
krebs
krebs
Patch Tuesday, May 2024 Edition
2024-05-14 20:19:23
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, May 2024 Security Update Review
2024-05-14 18:40:02
thn
thn
Microsoft Patches 61 Flaws, Including Two Actively Exploited Zero-Days
2024-05-15 07:17:00
nessus
nessus
KB5037788: Windows 10 LTS 1507 Security Update (May 2024)
2024-05-14 00:00:00
KB5037763: Windows 10 Version 1607 / Windows Server 2016 Security Update (May 2024)
2024-05-14 00:00:00
KB5037768: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (May 2024)
2024-05-14 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5037788)
2024-05-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5037763)
2024-05-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5037770)
2024-05-15 00:00:00
mskb
mskb
May 14, 2024—KB5037788 (OS Build 10240.20651)
2024-05-14 07:00:00
May 14, 2024—KB5037763 (OS Build 14393.6981)
2024-05-14 07:00:00
May 14, 2024—KB5037770 (OS Build 22000.2960)
2024-05-14 07:00:00
kaspersky
kaspersky
KLA67433 Multiple vulnerabilities in Microsoft Windows
2024-05-14 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - May 2024
2024-05-14 20:25:36

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.004

Percentile

74.8%

JSON
Related for NVD:CVE-2024-30040
vulnrichment1attackerkb1cvelist1mscve1cisa_kev1cve1krebs1qualysblog1thn1nessus8openvas5mskb9kaspersky1rapid7blog1