CVE-2024-20864

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published May 7, 2024

Summary

CVE-2024-20864 is a newly discovered access control vulnerability affecting the DarManagerService component. Prior to the SMR May-2024 Release 1, this issue permits local attackers to gain unauthorized access to system resources. The vulnerability stems from insufficient access controls, enabling malicious actors to monitor and potentially manipulate critical system information. This security flaw poses a significant risk to the confidentiality and integrity of impacted systems. It is strongly advised to apply the latest patch to mitigate this vulnerability and secure the system from potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vze8HN
https://www.cve.org/CVERecord?id=CVE-2024-20864
https://nvd.nist.gov/vuln/detail/CVE-2024-20864

Back to Vulnerability Database

CVE-2024-20864

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations