How severe is CVE-2024-49071?

CVE-2024-49071 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2024-49071

Name: defender_for_endpoint
Author: microsoft

6.5MEDIUM

Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network.

게시됨: 12/12/2024업데이트됨: 1/10/2025

설명

Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network.

AI 분석AI 기반

영향받는 제품

microsoftdefender_for_endpoint

참조

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49071
Vendor Advisory