BDU:2024-11011

BDU

HighConfirmedExploit available

Уязвимость драйвера Windows Common Log File System (CLFS) операционных систем Windows связана с переполнением буфера в динамической памяти.…

CVSS

7.8

High

EPSS

0.00

Published

2024-01-01

Updated

2024-01-01

Description

Уязвимость драйвера Windows Common Log File System (CLFS) операционных систем Windows связана с переполнением буфера в динамической памяти. Эксплуатация уязвимости может позволить нарушителю повысить свои привилегии до уровня SYSTEM

Affected products

Microsoft corp Windows_10Microsoft corp Windows_10 1607Microsoft corp Windows_10 1809Microsoft corp Windows_10 21h2Microsoft corp Windows_10 22h2Microsoft corp Windows_11 22h2Microsoft corp Windows_11 23h2Microsoft corp Windows_11 24h2Microsoft corp Windows_server_2008Microsoft corp Windows_server_2008Microsoft corp Windows_server_2008Microsoft corp Windows_server_2008Microsoft corp Windows_server_2012Microsoft corp Windows_server_2012Microsoft corp Windows_server_2012Microsoft corp Windows_server_2012Microsoft corp Windows_server_2016Microsoft corp Windows_server_2016Microsoft corp Windows_server_2019Microsoft corp Windows_server_2019

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Timeline

2024-01-01

Published

2024-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: L

Local (L)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: L

Low (L)

User Interaction

UI: N

None (N)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: H

High (H)

Integrity Impact

I: H

High (H)

Availability Impact

A: H

High (H)

Exploit indicators

EPSS

0.000 · p0

Known exploited (KEV)

Known exploits — Сканер-ВС

BDU:2024-11011

bdu_exploit · https://bdu.fstec.ru/vul

Enterprise

52270

exploitdb · https://www.exploit-db.com/exploits/52270

Enterprise

CVE-2024-49138

github-poc · https://github.com/vettrivel007/CVE-2024-49138

Enterprise

Affected products

Microsoft

Windows Windows Server 2016 Windows Server 2019 Windows Server 2012 Windows 10 Windows Server 2008 Windows 10 1809 Windows Server 2022 Windows 10 1607 Windows 10 21h2+5

Product	Vendor	Status
windows_10	microsoft corp	Tracked
windows_10 1607	microsoft corp	Tracked
windows_10 1809	microsoft corp	Tracked
windows_10 21h2	microsoft corp	Tracked
windows_10 22h2	microsoft corp	Tracked
windows_11 22h2	microsoft corp	Tracked
windows_11 23h2	microsoft corp	Tracked
windows_11 24h2	microsoft corp	Tracked
windows_server_2008	microsoft corp	Tracked
windows_server_2008	microsoft corp	Tracked
windows_server_2008	microsoft corp	Tracked
windows_server_2008	microsoft corp	Tracked
windows_server_2012	microsoft corp	Tracked
windows_server_2012	microsoft corp	Tracked
windows_server_2012	microsoft corp	Tracked
windows_server_2012	microsoft corp	Tracked
windows_server_2016	microsoft corp	Tracked
windows_server_2016	microsoft corp	Tracked
windows_server_2019	microsoft corp	Tracked
windows_server_2019	microsoft corp	Tracked

Showing first 20 of 205

Source databases

BDU

MSR

Related vulnerabilities

CVE-2024-49138

External references

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-49138@https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49138@https://github.com/MrAle98/CVE-2024-49138-POC