CVE-2024-21406

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 13, 2024

Updated: May 29, 2024

CWE ID 319

Summary

CVE-2024-21406 is a newly disclosed vulnerability affecting the Windows Printing Service. This issue permits an unauthenticated attacker to perform spoofing attacks. By manipulating print jobs, attackers can trick users into believing they are interacting with a legitimate printer or document. This vulnerability poses a significant risk to organizations, as it can be used to conduct phishing attacks or steal sensitive information. It is recommended that affected systems are updated as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ugdQR6
https://www.cve.org/CVERecord?id=CVE-2024-21406
https://nvd.nist.gov/vuln/detail/CVE-2024-21406

Back to Vulnerability Database

CVE-2024-21406

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations