CVE-2024-43475Buffer Over-read in Microsoft Windows Server 2008 Service Pack 2

CWE-126Buffer Over-read7 documents6 sources
Severity
7.3HIGHNVD
EPSS
8.7%
top 7.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Windows Server 2008 Service Pack 2
Timeline
PublishedSep 10

Description

Microsoft Windows Admin Center Information Disclosure Vulnerability

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:HExploitability: 2.1 | Impact: 5.2

Affected Packages1 packages

CVEListV5microsoft/windows_server_2008_service_pack_26.0.6003.06.0.6003.22870

Patches

Patch: msrc.microsoft.com

🔴Vulnerability Details

2
CVEList
Microsoft Windows Admin Center Information Disclosure Vulnerability2024-09-10
GHSA
GHSA-f2w3-qvqc-x7rq: Microsoft Windows Admin Center Information Disclosure Vulnerability2024-09-10

📋Vendor Advisories

1
Microsoft
Microsoft Windows Admin Center Information Disclosure Vulnerability2024-09-10

🕵️Threat Intelligence

3
Bleepingcomputer
Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws2024-09-10
Trendmicro
The September 2024 Security Update Review2024-09-10
Trendmicro
The September 2024 Security Update Review2024-09-10
CVE-2024-43475 — Buffer Over-read in Microsoft | cvebase