CVE-2024-43584

CWE-6934 documents4 sources
Severity
8.4HIGH
EPSS
0.8%
top 26.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
11
Microsoft Windows 11 Version 21h2Microsoft Windows 11 Version 22h2Microsoft Windows 11 Version 22h3+8 more
Timeline
PublishedOct 8

Description

Windows Scripting Engine Security Feature Bypass Vulnerability

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NExploitability: 2.5 | Impact: 5.2

Affected Packages11 packages

NVDmicrosoft/windows< 10.0.20348.2762+1
NVDmicrosoft/windows_11_21h2< 10.0.22000.3260
NVDmicrosoft/windows_11_22h2< 10.0.22621.4317
NVDmicrosoft/windows_11_23h2< 10.0.22631.4317
NVDmicrosoft/windows_11_24h2< 10.0.26100.2033

Patches

Patch: msrc.microsoft.com

🔴Vulnerability Details

2
CVEList
Windows Scripting Engine Security Feature Bypass Vulnerability2024-10-08
GHSA
GHSA-hq63-gmjg-m62p: Windows Scripting Engine Security Feature Bypass Vulnerability2024-10-08

📋Vendor Advisories

1
Microsoft
Windows Scripting Engine Security Feature Bypass Vulnerability2024-10-08