PT-2024-5585 · Microsoft · Windows

🗓️ 13 Aug 2024 00:00:00Reported by Positive TechnologiesType

ptsecurity

ptsecurity🔗 dbugs.ptsecurity.com👁 2 Views

Major vulnerability in Microsoft Windows AFD.sys exploited for privilege escalation by Lazarus Group.

Reporter	Title	Published	Views	Family All 69
GithubExploit	Exploit for Use After Free in Microsoft	3 Dec 202408:56	–	githubexploit
ATTACKERKB	CVE-2024-38193	13 Aug 202400:00	–	attackerkb
Circl	CVE-2024-38193	13 Aug 202418:05	–	circl
ICS	CISA Adds Six Known Exploited Vulnerabilities to Catalog	13 Aug 202412:00	–	ics
CISA KEV Catalog	Microsoft Windows Ancillary Function Driver for WinSock Privilege Escalation Vulnerability	13 Aug 202400:00	–	cisa_kev
CISA	CISA Adds Six Known Exploited Vulnerabilities to Catalog	13 Aug 202412:00	–	cisa
CNNVD	Microsoft Windows Ancillary Function Driver for WinSock 资源管理错误漏洞	13 Aug 202400:00	–	cnnvd
CVE	CVE-2024-38193	13 Aug 202417:29	–	cve
Cvelist	CVE-2024-38193 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability	13 Aug 202417:29	–	cvelist
Exploit DB	Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation	9 May 202500:00	–	exploitdb

Source	Link
github	www.github.com/MzHmO/Exploit-Street/tree/main/2024/CVE-2024-38193
github	www.github.com/killvxk/CVE-2024-38193-Nephster
github	www.github.com/Nephster/CVE-2024-38193
exploit-db	www.exploit-db.com/exploits/52284
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-38193
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38193
bdu	www.bdu.fstec.ru/vul/2024-06270
msrc	www.msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-38193
twitter	www.twitter.com/freedomhack101/status/1826622159638458810

21 Jul 2025 00:00Current

8.7High risk

Vulners AI Score8.7

CVSS 3.17.8

EPSS0.73233

SSVC

microsoft windows privilege escalation afd.sys vulnerability lazarus group patch recommendation system access