CVE-2024-38215

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 13, 2024

Updated: Aug 16, 2024

CWE ID 190

Summary

CVE-2024-38215 is a newly disclosed vulnerability affecting the Windows Cloud Files Mini Filter Driver. This issue grants attackers local privilege escalation capabilities, allowing them to elevate their user privileges to administrative level. Successful exploitation may lead to unauthorized access and modification of critical system settings or data. The Microsoft Cloud Files Mini Filter Driver, responsible for indexing and filtering data in the Microsoft OneDrive service, is the affected component. Users are strongly advised to install the Microsoft-released patch as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wbH1iH
https://www.cve.org/CVERecord?id=CVE-2024-38215
https://nvd.nist.gov/vuln/detail/CVE-2024-38215

Back to Vulnerability Database

CVE-2024-38215

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations