CVE-2024-20689 — Stack-based Buffer Overflow in Microsoft Windows Server 2012

CWE-121 — Stack-based Buffer Overflow6 documents5 sources

Severity

7.1HIGHCNA

No vector

EPSS

0.6%

top 29.52%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

4

Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Msrc Windows Server 2012 +1 more

Timeline

PublishedApr 9

Description

Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

Affected Packages4 packages

▶CVEListV5microsoft/windows_server_20126.2.9200.0 — 6.2.9200.24821

▶CVEListV5microsoft/windows_server_2012_r26.3.9600.0 — 6.3.9600.21924

▶msrcmsrc/windows_server_2012

▶msrcmsrc/windows_server_2012_r2

🔴Vulnerability Details

1

CVEList

Secure Boot Security Feature Bypass Vulnerability↗2024-04-09

▶

📋Vendor Advisories

1

Microsoft

Secure Boot Security Feature Bypass Vulnerability↗2024-04-09

▶

🕵️Threat Intelligence

4

Trendmicro

The April 2024 Security Updates Review↗2024-04-09

▶

Tenable

Microsoft’s April 2024 Patch Tuesday Addresses 147 CVEs (CVE-2024-29988)↗2024-04-09

▶

Bleepingcomputer

Microsoft April 2024 Patch Tuesday fixes 150 security flaws, 67 RCEs↗2024-04-09

▶

Trendmicro

The April 2024 Security Updates Review↗2024-04-09

▶