CVE-2024-43450Improper Enforcement of Message Integrity During Transmission in a Communication Channel in Microsoft Windows Server 2008 R2 Service Pack 1

CWE-924Improper Enforcement of Message Integrity During Transmission in a Communication Channel3 documents3 sources
Severity
7.5HIGHCNA
No vector
EPSS
1.2%
top 21.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
15
Microsoft Windows Server 2008 R2 Service Pack 1Microsoft Windows Server 2012Microsoft Windows Server 2012 R2+12 more
Timeline
PublishedNov 12

Description

Windows DNS Spoofing Vulnerability Windows DNS Spoofing Vulnerability

Affected Packages15 packages

CVEListV5microsoft/windows_server_20126.2.9200.06.2.9200.25165
CVEListV5microsoft/windows_server_201610.0.14393.010.0.14393.7515
CVEListV5microsoft/windows_server_201910.0.17763.010.0.17763.6532
CVEListV5microsoft/windows_server_202210.0.20348.010.0.20348.2849
CVEListV5microsoft/windows_server_202510.0.26100.010.0.26100.2314

🔴Vulnerability Details

1
CVEList
Windows DNS Spoofing Vulnerability2024-11-12

📋Vendor Advisories

1
Microsoft
Windows DNS Spoofing Vulnerability2024-11-12

🕵️Threat Intelligence

1
Bleepingcomputer
Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 89 flaws2024-11-12
CVE-2024-43450 — Microsoft vulnerability | cvebase