CVE-2024-26160Buffer Over-read in Microsoft Windows 11 Version 22h2

CWE-126Buffer Over-read11 documents7 sources
Severity
5.5MEDIUMNVD
EPSS
38.1%
top 2.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
11
Microsoft Windows 11 Version 22h2Microsoft Windows 11 Version 22h3Microsoft Windows 11 Version 23h2+8 more
Timeline
PublishedMar 12

Description

Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages11 packages

NVDmicrosoft/windows< 10.0.25398.763
NVDmicrosoft/windows_11_22h2< 10.0.22621.3296
NVDmicrosoft/windows_11_23h2< 10.0.22631.3296
CVEListV5microsoft/windows_11_version_22h210.0.22621.010.0.22621.3296
CVEListV5microsoft/windows_11_version_22h310.0.22631.010.0.22631.3296

🔴Vulnerability Details

1
GHSA
GHSA-x4qx-c389-cj23: Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability2024-03-12

📋Vendor Advisories

1
Microsoft
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability2024-03-12

🕵️Threat Intelligence

8
Bleepingcomputer
Microsoft March 2024 Patch Tuesday fixes 60 flaws, 18 RCE bugs2024-03-12
Qualys
Microsoft and Adobe Patch Tuesday, March 2024 Security Update Review2024-03-12
Trendmicro
The March 2024 Security Update Review2024-03-12
Trendmicro
The March 2024 Security Update Review2024-03-12
Qualys
Microsoft and Adobe March 2024 Patch Tuesday Security Fixes | Qualys2024-03-12
CVE-2024-26160 — Buffer Over-read in Microsoft | cvebase