Search

Find a vulnerability

Search criteria

    3120 vulnerabilities found for Windows 11 version 21H2 by Microsoft

    CVE-2024-43615 (GCVE-0-2024-43615)

    Vulnerability from nvd – Published: 2024-10-08 17:35 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
    Summary
    Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-73 - External Control of File Name or Path
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43615",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:26:16.478092Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T18:26:36.731Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Microsoft OpenSSH for Windows Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-73",
                  "description": "CWE-73: External Control of File Name or Path",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:20.842Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Microsoft OpenSSH for Windows Remote Code Execution Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43615"
            }
          ],
          "title": "Microsoft OpenSSH for Windows Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43615",
        "datePublished": "2024-10-08T17:35:36.364Z",
        "dateReserved": "2024-08-14T01:08:33.553Z",
        "dateUpdated": "2026-06-09T18:28:20.842Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43599 (GCVE-0-2024-43599)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Remote Desktop Client Remote Code Execution Vulnerability
    Summary
    Remote Desktop Client Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 (Server Core installation) Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 (Server Core installation) Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 (Server Core installation) Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43599",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:37:40.297650Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T19:27:38.208Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Remote Desktop Client Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:20.755Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Remote Desktop Client Remote Code Execution Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43599"
            }
          ],
          "title": "Remote Desktop Client Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43599",
        "datePublished": "2024-10-08T17:36:16.489Z",
        "dateReserved": "2024-08-14T01:08:33.550Z",
        "dateUpdated": "2026-06-09T18:29:20.755Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43585 (GCVE-0-2024-43585)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Code Integrity Guard Security Feature Bypass Vulnerability
    Summary
    Code Integrity Guard Security Feature Bypass Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-693 - Protection Mechanism Failure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43585",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:56:42.841764Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T19:41:15.954Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Code Integrity Guard Security Feature Bypass Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-693",
                  "description": "CWE-693: Protection Mechanism Failure",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:17.041Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Code Integrity Guard Security Feature Bypass Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43585"
            }
          ],
          "title": "Code Integrity Guard Security Feature Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43585",
        "datePublished": "2024-10-08T17:36:13.129Z",
        "dateReserved": "2024-08-14T01:08:33.547Z",
        "dateUpdated": "2026-06-09T18:29:17.041Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43584 (GCVE-0-2024-43584)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Windows Scripting Engine Security Feature Bypass Vulnerability
    Summary
    Windows Scripting Engine Security Feature Bypass Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-693 - Protection Mechanism Failure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43584",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T19:09:28.422956Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:03:05.097Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Scripting Engine Security Feature Bypass Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.7,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-693",
                  "description": "CWE-693: Protection Mechanism Failure",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:16.426Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Scripting Engine Security Feature Bypass Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43584"
            }
          ],
          "title": "Windows Scripting Engine Security Feature Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43584",
        "datePublished": "2024-10-08T17:36:12.575Z",
        "dateReserved": "2024-08-14T01:08:33.547Z",
        "dateUpdated": "2026-06-09T18:29:16.426Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43583 (GCVE-0-2024-43583)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Winlogon Elevation of Privilege Vulnerability
    Summary
    Winlogon Elevation of Privilege Vulnerability
    SSVC
    Exploitation: poc Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-250 - Execution with Unnecessary Privileges
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20857 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7606 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6659 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5247 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5247 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 6.1.7601.27467 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4602 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4602 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2605 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.23016 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 Affected: 6.1.7601.0 , < 6.1.7601.27467 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 (Server Core installation) Affected: 6.1.7601.0 , < 6.1.7601.27467 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.23016 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 (Server Core installation) Affected: 6.0.6003.0 , < 6.0.6003.23016 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 Affected: 6.2.9200.0 , < 6.2.9200.25222 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 (Server Core installation) Affected: 6.2.9200.0 , < 6.2.9200.25222 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 Affected: 6.3.9600.0 , < 6.3.9600.22318 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 (Server Core installation) Affected: 6.3.9600.0 , < 6.3.9600.22318 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7606 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7606 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6659 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6659 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2966 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1308 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2025 Affected: 10.0.26100.0 , < 10.0.26100.2605 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2025 (Server Core installation) Affected: 10.0.26100.0 , < 10.0.26100.2605 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43583",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-10T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-26T04:55:23.931Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://github.com/Kvngtheta/CVE-2024-43583-PoC/blob/main/poc-43583.py"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20857",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7606",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6659",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5247",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5247",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27467",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4602",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4602",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2605",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008  Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.23016",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27467",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27467",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.23016",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.23016",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25222",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25222",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22318",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22318",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7606",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7606",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6659",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6659",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2966",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1308",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2025",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2605",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2025 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2605",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6659",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6659",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6659",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2966",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5247",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "6.1.7601.27467",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5247",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4602",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4602",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1308",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2605",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20857",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7606",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7606",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7606",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.23016",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.23016",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "6.0.6003.23016",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27467",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27467",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25222",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25222",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22318",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22318",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.26100.2605",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.26100.2605",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Winlogon Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-250",
                  "description": "CWE-250: Execution with Unnecessary Privileges",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:22.002Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Winlogon Elevation of Privilege Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43583"
            }
          ],
          "title": "Winlogon Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43583",
        "datePublished": "2024-10-08T17:36:17.688Z",
        "dateReserved": "2024-08-14T01:08:33.547Z",
        "dateUpdated": "2026-06-09T18:29:22.002Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43582 (GCVE-0-2024-43582)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Remote Desktop Protocol Server Remote Code Execution Vulnerability
    Summary
    Remote Desktop Protocol Server Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19044.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 26H1 Affected: 10.0.28000.0 , < 10.0.28000.2269 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 14:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43582",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T19:09:48.972692Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:03:21.310Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19044.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 26H1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.28000.2269",
                  "status": "affected",
                  "version": "10.0.28000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19044.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_26H1:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.28000.2269",
                      "versionStartIncluding": "10.0.28000.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T14:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Remote Desktop Protocol Server Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:32.283Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Remote Desktop Protocol Server Remote Code Execution Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43582"
            }
          ],
          "title": "Remote Desktop Protocol Server Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43582",
        "datePublished": "2024-10-08T17:36:11.991Z",
        "dateReserved": "2024-08-14T01:08:33.546Z",
        "dateUpdated": "2026-06-09T18:29:32.283Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43581 (GCVE-0-2024-43581)

    Vulnerability from nvd – Published: 2024-10-08 17:35 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
    Summary
    Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-73 - External Control of File Name or Path
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43581",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:27:52.089847Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T18:28:22.570Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Microsoft OpenSSH for Windows Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-73",
                  "description": "CWE-73: External Control of File Name or Path",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:15.873Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Microsoft OpenSSH for Windows Remote Code Execution Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43581"
            }
          ],
          "title": "Microsoft OpenSSH for Windows Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43581",
        "datePublished": "2024-10-08T17:35:32.468Z",
        "dateReserved": "2024-08-14T01:08:33.546Z",
        "dateUpdated": "2026-06-09T18:28:15.873Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43574 (GCVE-0-2024-43574)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability
    Summary
    Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43574",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T19:13:27.570696Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T19:42:37.437Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.3,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:07.861Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43574"
            }
          ],
          "title": "Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43574",
        "datePublished": "2024-10-08T17:36:10.923Z",
        "dateReserved": "2024-08-14T01:08:33.545Z",
        "dateUpdated": "2026-06-09T18:29:07.861Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43573 (GCVE-0-2024-43573)

    Vulnerability from nvd – Published: 2024-10-08 17:35 – Updated: 2026-06-09 18:28
    VLAI CISA KEVIntel
    Title
    Windows MSHTML Platform Spoofing Vulnerability
    Summary
    Windows MSHTML Platform Spoofing Vulnerability
    SSVC
    Exploitation: active Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 (Server Core installation) Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43573",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-09T13:06:36.400528Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2024-10-08",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-43573"
                  },
                  "type": "kev"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T22:55:43.355Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-43573"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2024-10-08T00:00:00.000Z",
                "value": "CVE-2024-43573 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows MSHTML Platform Spoofing Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:F/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:14.445Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows MSHTML Platform Spoofing Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43573"
            }
          ],
          "title": "Windows MSHTML Platform Spoofing Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43573",
        "datePublished": "2024-10-08T17:35:31.236Z",
        "dateReserved": "2024-08-14T01:08:33.544Z",
        "dateUpdated": "2026-06-09T18:28:14.445Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43572 (GCVE-0-2024-43572)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI CISA KEVIntel
    Title
    Microsoft Management Console Remote Code Execution Vulnerability
    Summary
    Microsoft Management Console Remote Code Execution Vulnerability
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-707 - Improper Neutralization
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 (Server Core installation) Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 (Server Core installation) Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 (Server Core installation) Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 (Server Core installation) Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43572",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T19:53:44.895319Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2024-10-08",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-43572"
                  },
                  "type": "kev"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T22:55:43.177Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-43572"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2024-10-08T00:00:00.000Z",
                "value": "CVE-2024-43572 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008  Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Microsoft Management Console Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-707",
                  "description": "CWE-707: Improper Neutralization",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:07.231Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Microsoft Management Console Remote Code Execution Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43572"
            }
          ],
          "title": "Microsoft Management Console Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43572",
        "datePublished": "2024-10-08T17:36:10.339Z",
        "dateReserved": "2024-08-14T01:08:33.544Z",
        "dateUpdated": "2026-06-09T18:29:07.231Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43570 (GCVE-0-2024-43570)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Windows Kernel Elevation of Privilege Vulnerability
    Summary
    Windows Kernel Elevation of Privilege Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 (Server Core installation) Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 (Server Core installation) Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 (Server Core installation) Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 (Server Core installation) Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43570",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T19:16:44.062790Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T19:58:05.639Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008  Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Kernel Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.4,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:06.123Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Kernel Elevation of Privilege Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43570"
            }
          ],
          "title": "Windows Kernel Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43570",
        "datePublished": "2024-10-08T17:36:09.161Z",
        "dateReserved": "2024-08-14T01:08:33.543Z",
        "dateUpdated": "2026-06-09T18:29:06.123Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43565 (GCVE-0-2024-43565)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Windows Network Address Translation (NAT) Denial of Service Vulnerability
    Summary
    Windows Network Address Translation (NAT) Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43565",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:34:55.773283Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T18:35:09.571Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Network Address Translation (NAT) Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:04.977Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Network Address Translation (NAT) Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43565"
            }
          ],
          "title": "Windows Network Address Translation (NAT) Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43565",
        "datePublished": "2024-10-08T17:36:07.851Z",
        "dateReserved": "2024-08-14T01:08:33.538Z",
        "dateUpdated": "2026-06-09T18:29:04.977Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43563 (GCVE-0-2024-43563)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
    Summary
    Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-591 - Sensitive Data Storage in Improperly Locked Memory
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 (Server Core installation) Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 (Server Core installation) Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43563",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:36:03.537993Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T18:36:18.751Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-591",
                  "description": "CWE-591: Sensitive Data Storage in Improperly Locked Memory",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:03.658Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43563"
            }
          ],
          "title": "Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43563",
        "datePublished": "2024-10-08T17:36:06.584Z",
        "dateReserved": "2024-08-14T01:08:33.538Z",
        "dateUpdated": "2026-06-09T18:29:03.658Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43562 (GCVE-0-2024-43562)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Windows Network Address Translation (NAT) Denial of Service Vulnerability
    Summary
    Windows Network Address Translation (NAT) Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43562",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:36:43.663583Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T18:36:53.968Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Network Address Translation (NAT) Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:02.953Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Network Address Translation (NAT) Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43562"
            }
          ],
          "title": "Windows Network Address Translation (NAT) Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43562",
        "datePublished": "2024-10-08T17:36:06.009Z",
        "dateReserved": "2024-08-14T01:08:33.538Z",
        "dateUpdated": "2026-06-09T18:29:02.953Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43561 (GCVE-0-2024-43561)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    Summary
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    • CWE-125 - Out-of-bounds Read
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43561",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:37:41.338492Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T18:37:53.098Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20: Improper Input Validation",
                  "lang": "en-US",
                  "type": "CWE"
                },
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:01.858Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Mobile Broadband Driver Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43561"
            }
          ],
          "title": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43561",
        "datePublished": "2024-10-08T17:36:05.493Z",
        "dateReserved": "2024-08-14T01:08:33.537Z",
        "dateUpdated": "2026-06-09T18:29:01.858Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43560 (GCVE-0-2024-43560)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability
    Summary
    Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-122 - Heap-based Buffer Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 (Server Core installation) Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 (Server Core installation) Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43560",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T19:21:00.746693Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:00:39.556Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-122",
                  "description": "CWE-122: Heap-based Buffer Overflow",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:01.144Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43560"
            }
          ],
          "title": "Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43560",
        "datePublished": "2024-10-08T17:36:04.944Z",
        "dateReserved": "2024-08-14T01:08:33.537Z",
        "dateUpdated": "2026-06-09T18:29:01.144Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43559 (GCVE-0-2024-43559)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:29
    VLAI
    Title
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    Summary
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-476 - NULL Pointer Dereference
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43559",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T20:01:47.997007Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:10:34.662Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-476",
                  "description": "CWE-476: NULL Pointer Dereference",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:29:00.516Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Mobile Broadband Driver Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43559"
            }
          ],
          "title": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43559",
        "datePublished": "2024-10-08T17:36:04.367Z",
        "dateReserved": "2024-08-14T01:08:33.537Z",
        "dateUpdated": "2026-06-09T18:29:00.516Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43558 (GCVE-0-2024-43558)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    Summary
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    • CWE-125 - Out-of-bounds Read
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43558",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T20:02:01.009675Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:11:06.392Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20: Improper Input Validation",
                  "lang": "en-US",
                  "type": "CWE"
                },
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:59.913Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Mobile Broadband Driver Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43558"
            }
          ],
          "title": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43558",
        "datePublished": "2024-10-08T17:36:03.768Z",
        "dateReserved": "2024-08-14T01:08:33.537Z",
        "dateUpdated": "2026-06-09T18:28:59.913Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43557 (GCVE-0-2024-43557)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    Summary
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    • CWE-125 - Out-of-bounds Read
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43557",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T20:02:15.617542Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:13:05.939Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20: Improper Input Validation",
                  "lang": "en-US",
                  "type": "CWE"
                },
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:59.029Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Mobile Broadband Driver Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43557"
            }
          ],
          "title": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43557",
        "datePublished": "2024-10-08T17:36:03.159Z",
        "dateReserved": "2024-08-14T01:08:33.537Z",
        "dateUpdated": "2026-06-09T18:28:59.029Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43556 (GCVE-0-2024-43556)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Graphics Component Elevation of Privilege Vulnerability
    Summary
    Windows Graphics Component Elevation of Privilege Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 (Server Core installation) Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 (Server Core installation) Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 (Server Core installation) Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 (Server Core installation) Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43556",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T20:13:54.986661Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:27:46.462Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008  Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Graphics Component Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:58.324Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Graphics Component Elevation of Privilege Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43556"
            }
          ],
          "title": "Windows Graphics Component Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43556",
        "datePublished": "2024-10-08T17:36:02.292Z",
        "dateReserved": "2024-08-14T01:08:33.537Z",
        "dateUpdated": "2026-06-09T18:28:58.324Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43555 (GCVE-0-2024-43555)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    Summary
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43555",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T20:18:38.555727Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:28:14.693Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:57.584Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Mobile Broadband Driver Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43555"
            }
          ],
          "title": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43555",
        "datePublished": "2024-10-08T17:36:01.635Z",
        "dateReserved": "2024-08-14T01:08:33.537Z",
        "dateUpdated": "2026-06-09T18:28:57.584Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43554 (GCVE-0-2024-43554)

    Vulnerability from nvd – Published: 2024-10-08 17:35 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Kernel-Mode Driver Information Disclosure Vulnerability
    Summary
    Windows Kernel-Mode Driver Information Disclosure Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-212 - Improper Removal of Sensitive Information Before Storage or Transfer
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43554",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:50:27.854147Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-09T19:51:11.328Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Kernel-Mode Driver Information Disclosure Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-212",
                  "description": "CWE-212: Improper Removal of Sensitive Information Before Storage or Transfer",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:13.804Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Kernel-Mode Driver Information Disclosure Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43554"
            }
          ],
          "title": "Windows Kernel-Mode Driver Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43554",
        "datePublished": "2024-10-08T17:35:30.628Z",
        "dateReserved": "2024-08-14T01:08:33.537Z",
        "dateUpdated": "2026-06-09T18:28:13.804Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43553 (GCVE-0-2024-43553)

    Vulnerability from nvd – Published: 2024-10-08 17:36 – Updated: 2026-06-09 18:28
    VLAI
    Title
    NT OS Kernel Elevation of Privilege Vulnerability
    Summary
    NT OS Kernel Elevation of Privilege Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-822 - Untrusted Pointer Dereference
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 (Server Core installation) Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 (Server Core installation) Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 (Server Core installation) Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 (Server Core installation) Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43553",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T20:19:07.954679Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:29:53.647Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008  Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "NT OS Kernel Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-822",
                  "description": "CWE-822: Untrusted Pointer Dereference",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:56.827Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "NT OS Kernel Elevation of Privilege Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43553"
            }
          ],
          "title": "NT OS Kernel Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43553",
        "datePublished": "2024-10-08T17:36:00.923Z",
        "dateReserved": "2024-08-14T01:08:33.536Z",
        "dateUpdated": "2026-06-09T18:28:56.827Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43551 (GCVE-0-2024-43551)

    Vulnerability from nvd – Published: 2024-10-08 17:35 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Storage Elevation of Privilege Vulnerability
    Summary
    Windows Storage Elevation of Privilege Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43551",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T20:23:40.318840Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:38:22.883Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Storage Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-59",
                  "description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:55.568Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Storage Elevation of Privilege Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43551"
            }
          ],
          "title": "Windows Storage Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43551",
        "datePublished": "2024-10-08T17:35:59.625Z",
        "dateReserved": "2024-08-14T01:08:33.536Z",
        "dateUpdated": "2026-06-09T18:28:55.568Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43550 (GCVE-0-2024-43550)

    Vulnerability from nvd – Published: 2024-10-08 17:35 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Secure Channel Spoofing Vulnerability
    Summary
    Windows Secure Channel Spoofing Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-295 - Improper Certificate Validation
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 (Server Core installation) Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 (Server Core installation) Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43550",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-09T13:28:36.882970Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-09T13:36:48.410Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Secure Channel Spoofing Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-295",
                  "description": "CWE-295: Improper Certificate Validation",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:54.924Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Secure Channel Spoofing Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43550"
            }
          ],
          "title": "Windows Secure Channel Spoofing Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43550",
        "datePublished": "2024-10-08T17:35:59.105Z",
        "dateReserved": "2024-08-14T01:08:33.536Z",
        "dateUpdated": "2026-06-09T18:28:54.924Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43547 (GCVE-0-2024-43547)

    Vulnerability from nvd – Published: 2024-10-08 17:35 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Kerberos Information Disclosure Vulnerability
    Summary
    Windows Kerberos Information Disclosure Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-325 - Missing Cryptographic Step
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.20796 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 R2 Service Pack 1 (Server Core installation) Affected: 6.1.7601.0 , < 6.1.7601.27366 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2008 Service Pack 2 (Server Core installation) Affected: 6.0.6003.0 , < 6.0.6003.22918 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 (Server Core installation) Affected: 6.2.9200.0 , < 6.2.9200.25118 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2012 R2 (Server Core installation) Affected: 6.3.9600.0 , < 6.3.9600.22221 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.7428 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43547",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:39:32.483326Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T18:39:44.271Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.20796",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008  Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.1.7601.27366",
                  "status": "affected",
                  "version": "6.1.7601.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.6003.22918",
                  "status": "affected",
                  "version": "6.0.6003.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.2.9200.25118",
                  "status": "affected",
                  "version": "6.2.9200.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2012 R2 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.3.9600.22221",
                  "status": "affected",
                  "version": "6.3.9600.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.7428",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.20796",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.7428",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "6.0.6003.22918",
                      "versionStartIncluding": "6.0.6003.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.1.7601.27366",
                      "versionStartIncluding": "6.1.7601.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.2.9200.25118",
                      "versionStartIncluding": "6.2.9200.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "6.3.9600.22221",
                      "versionStartIncluding": "6.3.9600.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Kerberos Information Disclosure Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-325",
                  "description": "CWE-325: Missing Cryptographic Step",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:53.816Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Kerberos Information Disclosure Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43547"
            }
          ],
          "title": "Windows Kerberos Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43547",
        "datePublished": "2024-10-08T17:35:57.921Z",
        "dateReserved": "2024-08-14T01:08:33.535Z",
        "dateUpdated": "2026-06-09T18:28:53.816Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43546 (GCVE-0-2024-43546)

    Vulnerability from nvd – Published: 2024-10-08 17:35 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Cryptographic Information Disclosure Vulnerability
    Summary
    Windows Cryptographic Information Disclosure Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.2762 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43546",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:40:12.489246Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T18:40:22.161Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.2762",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.2762",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Cryptographic Information Disclosure Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.6,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-203",
                  "description": "CWE-203: Observable Discrepancy",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:53.157Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Cryptographic Information Disclosure Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43546"
            }
          ],
          "title": "Windows Cryptographic Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43546",
        "datePublished": "2024-10-08T17:35:57.290Z",
        "dateReserved": "2024-08-14T01:08:33.535Z",
        "dateUpdated": "2026-06-09T18:28:53.157Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43543 (GCVE-0-2024-43543)

    Vulnerability from nvd – Published: 2024-10-08 17:35 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Mobile Broadband Driver Remote Code Execution Vulnerability
    Summary
    Windows Mobile Broadband Driver Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43543",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T18:30:23.906932Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T18:30:55.154Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Mobile Broadband Driver Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-601",
                  "description": "CWE-601: URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:13.217Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Mobile Broadband Driver Remote Code Execution Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43543"
            }
          ],
          "title": "Windows Mobile Broadband Driver Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43543",
        "datePublished": "2024-10-08T17:35:30.088Z",
        "dateReserved": "2024-08-14T01:08:33.533Z",
        "dateUpdated": "2026-06-09T18:28:13.217Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43542 (GCVE-0-2024-43542)

    Vulnerability from nvd – Published: 2024-10-08 17:35 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    Summary
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    • CWE-125 - Out-of-bounds Read
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43542",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T19:01:51.937687Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T19:02:01.585Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20: Improper Input Validation",
                  "lang": "en-US",
                  "type": "CWE"
                },
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:12.587Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Mobile Broadband Driver Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43542"
            }
          ],
          "title": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43542",
        "datePublished": "2024-10-08T17:35:29.477Z",
        "dateReserved": "2024-08-14T01:08:33.532Z",
        "dateUpdated": "2026-06-09T18:28:12.587Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-43540 (GCVE-0-2024-43540)

    Vulnerability from nvd – Published: 2024-10-08 17:35 – Updated: 2026-06-09 18:28
    VLAI
    Title
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    Summary
    Windows Mobile Broadband Driver Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    • CWE-125 - Out-of-bounds Read
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19044.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 22H2 Affected: 10.0.19045.0 , < 10.0.19045.5011 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.22000.0 , < 10.0.22000.3260 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H2 Affected: 10.0.22621.0 , < 10.0.22621.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 22H3 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 23H2 Affected: 10.0.22631.0 , < 10.0.22631.4317 (custom)
    Create a notification for this product.
    Microsoft Windows 11 Version 24H2 Affected: 10.0.26100.0 , < 10.0.26100.2033 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.6414 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) Affected: 10.0.25398.0 , < 10.0.25398.1189 (custom)
    Create a notification for this product.
    Date Public
    2024-10-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43540",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T19:03:09.988040Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T19:03:19.795Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19044.5011",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19045.5011",
                  "status": "affected",
                  "version": "10.0.19045.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.3260",
                  "status": "affected",
                  "version": "10.0.22000.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 version 22H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22621.4317",
                  "status": "affected",
                  "version": "10.0.22621.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 22H3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 23H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22631.4317",
                  "status": "affected",
                  "version": "10.0.22631.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 11 Version 24H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.26100.2033",
                  "status": "affected",
                  "version": "10.0.26100.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.6414",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.25398.1189",
                  "status": "affected",
                  "version": "10.0.25398.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.6414",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.3260",
                      "versionStartIncluding": "10.0.22000.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19044.5011",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22621.4317",
                      "versionStartIncluding": "10.0.22621.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19045.5011",
                      "versionStartIncluding": "10.0.19045.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22631.4317",
                      "versionStartIncluding": "10.0.22631.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.25398.1189",
                      "versionStartIncluding": "10.0.25398.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.26100.2033",
                      "versionStartIncluding": "10.0.26100.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2024-10-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20: Improper Input Validation",
                  "lang": "en-US",
                  "type": "CWE"
                },
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-09T18:28:11.075Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Windows Mobile Broadband Driver Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "patch"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43540"
            }
          ],
          "title": "Windows Mobile Broadband Driver Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2024-43540",
        "datePublished": "2024-10-08T17:35:28.404Z",
        "dateReserved": "2024-08-14T01:08:33.532Z",
        "dateUpdated": "2026-06-09T18:28:11.075Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }