CVE-2024-30062 — Use After Free in Microsoft Windows Server 2012 R2

Severity

7.8HIGHNVD

EPSS

1.0%

top 23.33%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedJun 11

Description

Windows Standards-Based Storage Management Service Remote Code Execution Vulnerability

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

▶NVDmicrosoft/windows< 10.0.14393.7070+3

▶CVEListV5microsoft/windows_server_201610.0.14393.0 — 10.0.14393.7070

▶CVEListV5microsoft/windows_server_201910.0.17763.0 — 10.0.17763.5936

▶CVEListV5microsoft/windows_server_202210.0.20348.0 — 10.0.20348.2527

▶CVEListV5microsoft/windows_server_2012_r26.3.9600.0 — 6.3.9600.22023

GHSA

GHSA-wf7h-7f7p-8g7g: Windows Standards-Based Storage Management Service Remote Code Execution Vulnerability↗2024-06-11

▶

Microsoft

Windows Standards-Based Storage Management Service Remote Code Execution Vulnerability↗2024-06-11

▶

Trendmicro

The June 2024 Security Update Review↗2024-06-11

▶

Trendmicro

The June 2024 Security Update Review↗2024-06-11

▶