CVE-2024-30088
7.0HIGHWindows Kernel Elevation of Privilege Vulnerability
Veröffentlicht: 6/11/2024Aktualisiert: 10/28/2025
CISA Bekannte Ausgenutzte Schwachstelle
Microsoft Windows Kernel contains a time-of-check to time-of-use (TOCTOU) race condition vulnerability that could allow for privilege escalation.
Erforderliche Maßnahme:
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Fälligkeitsdatum:
2024-11-05
Beschreibung
Windows Kernel Elevation of Privilege Vulnerability
KI-AnalyseKI-gestützt
Betroffene Produkte
microsoftwindows_10_1507
microsoftwindows_10_1607
microsoftwindows_10_1607
microsoftwindows_10_1809
microsoftwindows_10_21h2
microsoftwindows_10_22h2
microsoftwindows_11_21h2
microsoftwindows_11_22h2
microsoftwindows_11_23h2
microsoftwindows_server_2016
microsoftwindows_server_2019
microsoftwindows_server_2022
microsoftwindows_server_2022_23h2
Referenzen
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30088PatchVendor Advisory
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30088PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-30088US Government Resource