CVE-2024-21405

CVSS 3.1 Score 7.0 of 10 (high)

Details

Published Feb 13, 2024

Updated: May 29, 2024

CWE ID 591

Summary

CVE-2024-21405 is an elevation of privilege vulnerability affecting Microsoft Message Queuing (MSMQ). An attacker who successfully exploits this vulnerability can gain higher levels of access within a vulnerable system, potentially leading to serious security consequences. The exact cause of the issue is still under investigation by Microsoft, but it appears to involve improper handling of MSMQ messages. System administrators are strongly advised to apply the forthcoming Microsoft patch as soon as it becomes available to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ugcsOG
https://www.cve.org/CVERecord?id=CVE-2024-21405
https://nvd.nist.gov/vuln/detail/CVE-2024-21405

Back to Vulnerability Database

CVE-2024-21405

CVSS 3.1 Score 7.0 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations