CVE-2024-26181
published 2024-03-12CVE-2024-26181: Windows Kernel Denial of Service Vulnerability Windows Kernel Denial of Service Vulnerability
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
EPSS
1.04%
59.6th percentile
Windows Kernel Denial of Service Vulnerability
Windows Kernel Denial of Service Vulnerability
Affected
32 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_10_version_1507 | >= 10.0.10240.0 < 10.0.10240.20526 | 10.0.10240.20526 |
| microsoft | windows_10_version_1607 | >= 10.0.14393.0 < 10.0.14393.6796 | 10.0.14393.6796 |
| microsoft | windows_10_version_1809 | >= 10.0.0 < 10.0.17763.5576 | 10.0.17763.5576 |
| microsoft | windows_10_version_1809 | >= 10.0.17763.0 < 10.0.17763.5576 | 10.0.17763.5576 |
| microsoft | windows_10_version_21h2 | >= 10.0.19043.0 < 10.0.19044.4170 | 10.0.19044.4170 |
| microsoft | windows_10_version_22h2 | >= 10.0.19045.0 < 10.0.19045.4170 | 10.0.19045.4170 |
| microsoft | windows_11_version_21h2 | >= 10.0.0 < 10.0.22000.2836 | 10.0.22000.2836 |
| microsoft | windows_11_version_22h2 | >= 10.0.22621.0 < 10.0.22621.3296 | 10.0.22621.3296 |
| microsoft | windows_11_version_22h3 | >= 10.0.22631.0 < 10.0.22631.3296 | 10.0.22631.3296 |
| microsoft | windows_11_version_23h2 | >= 10.0.22631.0 < 10.0.22631.3296 | 10.0.22631.3296 |
| microsoft | windows_server_2008_r2_service_pack_1 | >= 6.1.7601.0 < 6.1.7601.27017 | 6.1.7601.27017 |
| microsoft | windows_server_2008_service_pack_2 | >= 6.0.6003.0 < 6.0.6003.22567 | 6.0.6003.22567 |
| microsoft | windows_server_2012 | >= 6.2.9200.0 < 6.2.9200.24768 | 6.2.9200.24768 |
| microsoft | windows_server_2012_r2 | >= 6.3.9600.0 < 6.3.9600.21871 | 6.3.9600.21871 |
| microsoft | windows_server_2016 | >= 10.0.14393.0 < 10.0.14393.6796 | 10.0.14393.6796 |
| microsoft | windows_server_2019 | >= 10.0.17763.0 < 10.0.17763.5576 | 10.0.17763.5576 |
| microsoft | windows_server_2022 | >= 10.0.20348.0 < 10.0.20348.2340 | 10.0.20348.2340 |
| msrc | windows_10 | — | — |
| msrc | windows_10_version_1607 | — | — |
| msrc | windows_10_version_1809 | — | — |
| msrc | windows_10_version_21h2 | — | — |
| msrc | windows_10_version_22h2 | — | — |
| msrc | windows_11_version_21h2 | — | — |
| msrc | windows_11_version_22h2 | — | — |
| msrc | windows_11_version_23h2 | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
cvelistv55.5MEDIUM
vendor_msrc5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Microsoft
Windows Kernel Denial of Service Vulnerability
vendor_msrc·2024-03-12·CVSS 5.5
CVE-2024-26181 [MEDIUM] CWE-20 Windows Kernel Denial of Service Vulnerability
Windows Kernel Denial of Service Vulnerability
Windows Kernel: Windows Kernel
Microsoft: Microsoft
Customer Action Required: Yes
Impact: Denial of Service
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;DOS:N/A
Reference: https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5035849
Reference: https://support.microsoft.com/help/5035849
Reference: https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5035857
Reference: https://support.microsoft.com/help/5035857
Reference: https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5035959
Reference: https://support.microsoft.com/help/5035959
Reference: https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5035854
Reference: https://support.microsoft.com/h
Project0
The Windows Registry Adventure #7: Attack surface analysis - Project Zero
project_zero·2025-05-01
CVE-2010-0237 The Windows Registry Adventure #7: Attack surface analysis - Project Zero
Posted by Mateusz Jurczyk, Google Project Zero
In the first three blog posts of this series, I sought to outline what the Windows Registry actually is, its role, history, and where to find further information about it. In the subsequent three posts, my goal was to describe in detail how this mechanism works internally – from the perspective of its clients (e.g., user-mode applications running on Windows), the regf format used to encode hives, and finally the kernel itself, which contains its canonical implementation. I believe all these elements are essential for painting a complete picture of this subsystem, and in a way, it shows my own approach to security research. One could say that going through this tedious process of getting to know the target unnecessarily lengthens the total
Project0
The Windows Registry Adventure #4: Hives and the registry layout - Project Zero
project_zero·2024-10-01
CVE-2023-35356 The Windows Registry Adventure #4: Hives and the registry layout - Project Zero
Posted by Mateusz Jurczyk, Google Project Zero
To a normal user or even a Win32 application developer, the registry layout may seem simple: there are five root keys that we know from Regedit (abbreviated as HKCR, HKLM, HKCU, HKU and HKCC), and each of them contains a nested tree structure that serves a specific role in the system. But as one tries to dig deeper and understand how the registry really works internally, things may get confusing really fast. What are hives? How do they map or relate to the top-level keys? Why are some HKEY root keys pointing inside of other root keys (e.g. HKCU being located under HKU)? These are all valid questions, but they are difficult to answer without fully understanding the interactions between the user-mode Registry API and the kernel-mode registr
Project0
The Windows Registry Adventure #1: Introduction and research results - Project Zero
project_zero·2024-04-01
CVE-2022-34707 The Windows Registry Adventure #1: Introduction and research results - Project Zero
Posted by Mateusz Jurczyk, Google Project Zero
In the 20-month period between May 2022 and December 2023, I thoroughly audited the Windows Registry in search of local privilege escalation bugs. It all started unexpectedly: I was in the process of developing a coverage-based Windows kernel fuzzer based on the Bochs x86 emulator (one of my favorite tools for security research: see Bochspwn, Bochspwn Reloaded, and my earlier font fuzzing infrastructure), and needed some binary formats to test it on. My first pick were PE files: they are very popular in the Windows environment, which makes it easy to create an initial corpus of input samples, and a basic fuzzing harness is equally easy to develop with just a single GetFileVersionInfoSizeW API call. The test was successful: even though I h
CVEList
Windows Kernel Denial of Service Vulnerability
cvelistv5·2024-03-12·CVSS 5.5
CVE-2024-26181 [MEDIUM] CWE-20 Windows Kernel Denial of Service Vulnerability
Windows Kernel Denial of Service Vulnerability
Windows Kernel Denial of Service Vulnerability
No detection rules found.
No public exploits indexed.
Bleepingcomputer
Microsoft March 2024 Patch Tuesday fixes 60 flaws, 18 RCE bugs
blogs_bleepingcomputer·2024-03-12·CVSS 5.5
[MEDIUM] Microsoft March 2024 Patch Tuesday fixes 60 flaws, 18 RCE bugs
## Microsoft March 2024 Patch Tuesday fixes 60 flaws, 18 RCE bugs
## Lawrence Abrams
24 Elevation of Privilege Vulnerabilities
3 Security Feature Bypass Vulnerabilities
18 Remote Code Execution Vulnerabilities
6 Information Disclosure Vulnerabilities
6 Denial of Service Vulnerabilities
2 Spoofing Vulnerabilities
The total count of 60 flaws does not include 4 Microsoft Edge flaws fixed on March 7th.
Furthermore, Microsoft did not disclose any zero-days as part of today's Patch Tuesday updates.
To learn more about the non-security updates released today, you can review our dedicated articles on the new Windows 11 KB5035853 update and the Windows 10 KB5035845 update .
## Flaws of interest
This month's Patch Tuesday does not fix any zero-day vulnerabilities but does include some in
Trendmicro
The March 2024 Security Update Review
blogs_trendmicro·2024-03-12
The March 2024 Security Update Review
# The March 2024 Security Update Review
Get the March 2024 security update and review.
By: Dustin Childs
2024/03/12
Read time: ( words)
Save to Folio
It’s the second Tuesday of the month, and Adobe and Microsoft have released a fresh crop of security updates. Take a break from your other activities and join us as we review the details of their latest advisories. If you’d rather watch the full video recap covering the entire release, you can check it out here:
Adobe Patches for March 2024
For March, Adobe released six patches addressing 56 vulnerabilities in Adobe Experience Manager, Premiere Pro, ColdFusion, Adobe Bridge, Lightroom, and Adobe Animate. Two of these bugs were submitted through the ZDI Program. The largest is the update for Experience Manager, which addresses 44 CVEs.
Trendmicro
The March 2024 Security Update Review
blogs_trendmicro·2024-03-12
The March 2024 Security Update Review
## The March 2024 Security Update Review
Get the March 2024 security update and review.
By: Dustin Childs 2024/03/12 Read time: ( words)
Save to Folio
It’s the second Tuesday of the month, and Adobe and Microsoft have released a fresh crop of security updates. Take a break from your other activities and join us as we review the details of their latest advisories. If you’d rather watch the full video recap covering the entire release, you can check it out here:
Adobe Patches for March 2024
For March, Adobe released six patches addressing 56 vulnerabilities in Adobe Experience Manager, Premiere Pro, ColdFusion, Adobe Bridge, Lightroom, and Adobe Animate. Two of these bugs were submitted through the ZDI Program. The largest is the update for Experience Manager , which addresses 44 CVEs.
Trendmicro
The March 2024 Security Update Review
blogs_trendmicro·2024-03-12
The March 2024 Security Update Review
## The March 2024 Security Update Review
Get the March 2024 security update and review.
By: Dustin Childs Mar 12, 2024 Read time: ( words)
Save to Folio
It’s the second Tuesday of the month, and Adobe and Microsoft have released a fresh crop of security updates. Take a break from your other activities and join us as we review the details of their latest advisories. If you’d rather watch the full video recap covering the entire release, you can check it out here:
Adobe Patches for March 2024
For March, Adobe released six patches addressing 56 vulnerabilities in Adobe Experience Manager, Premiere Pro, ColdFusion, Adobe Bridge, Lightroom, and Adobe Animate. Two of these bugs were submitted through the ZDI Program. The largest is the update for Experience Manager , which addresses 44 CVE
Trendmicro
The March 2024 Security Update Review
blogs_trendmicro·2024-03-12
The March 2024 Security Update Review
## The March 2024 Security Update Review
Get the March 2024 security update and review.
By: Dustin Childs Mar 12, 2024 Read time: ( words)
Save to Folio
It’s the second Tuesday of the month, and Adobe and Microsoft have released a fresh crop of security updates. Take a break from your other activities and join us as we review the details of their latest advisories. If you’d rather watch the full video recap covering the entire release, you can check it out here:
Adobe Patches for March 2024
For March, Adobe released six patches addressing 56 vulnerabilities in Adobe Experience Manager, Premiere Pro, ColdFusion, Adobe Bridge, Lightroom, and Adobe Animate. Two of these bugs were submitted through the ZDI Programme. The largest is the update for Experience Manager , which addresses 44 C
2024-03-12
Published