CVE-2024-21435 — Untrusted Search Path in Microsoft Windows 11 Version 22h2

CWE-426 — Untrusted Search Path9 documents5 sources

Severity

8.8HIGHCNA

No vector

EPSS

1.3%

top 20.23%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

7

Microsoft Windows 11 Version 22h2 Microsoft Windows 11 Version 22h3 Microsoft Windows 11 Version 23h2 +4 more

Timeline

PublishedMar 12

Description

Windows OLE Remote Code Execution Vulnerability Windows OLE Remote Code Execution Vulnerability

Affected Packages7 packages

▶CVEListV5microsoft/windows_11_version_22h210.0.22621.0 — 10.0.22621.3296

▶CVEListV5microsoft/windows_11_version_22h310.0.22631.0 — 10.0.22631.3296

▶CVEListV5microsoft/windows_11_version_23h210.0.22631.0 — 10.0.22631.3296

▶msrcmsrc/windows_11_version_22h2_for_x64-based_systems

▶msrcmsrc/windows_11_version_23h2_for_x64-based_systems

🔴Vulnerability Details

1

CVEList

Windows OLE Remote Code Execution Vulnerability↗2024-03-12

▶

📋Vendor Advisories

1

Microsoft

Windows OLE Remote Code Execution Vulnerability↗2024-03-12

▶

🕵️Threat Intelligence

7

Krebs

Patch Tuesday, March 2024 Edition↗2024-03-12

▶

Bleepingcomputer

Microsoft March 2024 Patch Tuesday fixes 60 flaws, 18 RCE bugs↗2024-03-12

▶

Trendmicro

The March 2024 Security Update Review↗2024-03-12

▶

Trendmicro

The March 2024 Security Update Review↗2024-03-12

▶

Krebs

Patch Tuesday, March 2024 Edition↗2024-03-12

▶

CVE-2024-21435 — Untrusted Search Path in Microsoft | cvebase