CVE-2024-49071 — Improper Authorization of Index Containing Sensitive Information in Microsoft Defender FOR Endpoint FOR Windows

CWE-612 — Improper Authorization of Index Containing Sensitive Information CWE-820 — Missing Synchronization4 documents4 sources

Severity

6.5MEDIUMNVD

EPSS

0.8%

top 26.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Defender FOR Endpoint FOR Windows Msrc Microsoft Defender FOR Endpoint FOR Windows

Timeline

PublishedDec 12

Description

Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

▶msrcmsrc/microsoft_defender_for_endpoint_for_windows

▶CVEListV5microsoft/microsoft_defender_for_endpoint_for_windowsN/A

🔴Vulnerability Details

GHSA

GHSA-49ff-m2jv-96mv: Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to↗2024-12-12

▶

📋Vendor Advisories

Microsoft

Windows Defender Information Disclosure Vulnerability↗2024-12-10

▶