CVE-2024-21324

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Apr 9, 2024

Updated: Apr 10, 2024

CWE ID 269

Summary

CVE-2024-21324 is a newly discovered vulnerability affecting Microsoft Defender for IoT. This elevation of privilege issue allows unauthenticated attackers to escalate their privileges and gain administrative control over affected systems. Successful exploitation could lead to significant security implications, including unauthorized access and data breaches. Microsoft has released a patch to address this vulnerability, and it is strongly recommended that all users apply the update as soon as possible to mitigate the risk. Failure to do so could result in serious consequences for IoT networks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vSTXgf
https://www.cve.org/CVERecord?id=CVE-2024-21324
https://nvd.nist.gov/vuln/detail/CVE-2024-21324

Back to Vulnerability Database

CVE-2024-21324

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations