CVE-2024-6769

CWE-426 CWE-4273 documents3 sources

Severity

8.4HIGH

EPSS

16.0%

top 5.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows 10 Microsoft Windows 11 Microsoft Windows Server 2016 +2 more

Timeline

PublishedSep 26

Description

A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated attacker to elevate from a medium integrity process to a high integrity process without the intervention of a UAC prompt.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages5 packages

▶CVEListV5microsoft/windows_server_201610.0.0

▶CVEListV5microsoft/windows_server_201910.0.0

▶CVEListV5microsoft/windows_server_202210.0.0

▶CVEListV5microsoft/windows_1010.0.0

▶CVEListV5microsoft/windows_1110.0.0

🔴Vulnerability Details

GHSA

GHSA-qmr2-j5m9-cq3m: A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in Microsoft Windows 10, Windows 11, Windows Server 2016,↗2024-09-26

▶

CVEList

Medium to High Integrity Privilege Escalation in Microsoft Windows↗2024-09-26

▶