CVE-2023-24860

CWE-400Uncontrolled Resource Consumption7 documents5 sources
Severity
7.5HIGH
EPSS
4.1%
top 11.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft Microsoft Malware Protection EngineMicrosoft Malware Protection Engine
Timeline
PublishedApr 11
Latest updateSep 2

Description

Microsoft Defender Denial of Service Vulnerability

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5microsoft/microsoft_malware_protection_engine1.1.0.01.1.20200.4

Patches

Patch: msrc.microsoft.comPatch: msrc.microsoft.com

🔴Vulnerability Details

5
OSV
linux-raspi-5.4 vulnerabilities2024-09-02
OSV
linux-aws-5.4 vulnerabilities2024-08-26
OSV
linux-azure-5.4 vulnerabilities2024-08-23
GHSA
GHSA-qj2r-8848-46qg: Microsoft Defender Denial of Service Vulnerability2023-04-11
CVEList
Microsoft Defender Denial of Service Vulnerability2023-04-11

📋Vendor Advisories

1
Microsoft
Microsoft Defender Denial of Service Vulnerability2023-04-11
CVE-2023-24860 (HIGH CVSS 7.5) | Microsoft Defender Denial of Servic | cvebase.io