Lucene search
HistorySep 10, 2024 - 5:15 p.m.
CVE-2024-38231
windows remote desktop licensing
denial of service
vulnerability
cve-2024-38231
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
27.9%
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
Affected configurations
Node
microsoftwindows_server_2008Match-sp2x64
ORmicrosoftwindows_server_2008Match-sp2x86
ORmicrosoftwindows_server_2008Matchr2x64
ORmicrosoftwindows_server_2012Match-x64
ORmicrosoftwindows_server_2012Matchr2x64
ORmicrosoftwindows_server_2016Range<10.0.14393.7336
ORmicrosoftwindows_server_2019Range<10.0.17763.6293
ORmicrosoftwindows_server_2022Range<10.0.20348.2700
ORmicrosoftwindows_server_2022_23h2Range<10.0.25398.1128
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_server_2008 | - | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:* |
| microsoft | windows_server_2008 | - | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:* |
| microsoft | windows_server_2008 | r2 | cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:x64:* |
| microsoft | windows_server_2012 | - | cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:x64:* |
| microsoft | windows_server_2012 | r2 | cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:x64:* |
| microsoft | windows_server_2016 | * | cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2019 | * | cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2022 | * | cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2022_23h2 | * | cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2024-38231
2024-09-10 17:15:26
vulnrichment
vulnrichment
cvelist
cvelist
mscve
mscve
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
2024-09-10 07:00:00
nessus
nessus
KB5043087: Windows Server 2008 Security Update (September 2024)
2024-09-10 00:00:00
KB5043092: Windows Server 2008 R2 Security Update (September 2024)
2024-09-10 00:00:00
KB5043125: Windows Server 2012 Security Update (September 2024)
2024-09-10 00:00:00
mskb
mskb
September 10, 2024βKB5043087 (Security-only update)
2024-09-10 07:00:00
September 10, 2024βKB5043129 (Monthly Rollup)
2024-09-10 07:00:00
September 10, 2024βKB5043135 (Monthly Rollup)
2024-09-10 07:00:00
kaspersky
kaspersky
KLA73222 Multiple vulnerabilities in Microsoft Products (ESU)
2024-09-10 00:00:00
KLA73227 Multiple vulnerabilities in Microsoft Windows
2024-09-10 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5043050)
2024-09-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5043051)
2024-09-11 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - September 2024
2024-09-10 20:49:21
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
27.9%
Related for NVD:CVE-2024-38231