How severe is CVE-2024-49071?

CVE-2024-49071 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2024-49071

Name: defender_for_endpoint
Author: microsoft

6.5MEDIUM

Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network.

发布于: 12/12/2024更新于: 1/10/2025

描述

Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network.

AI分析AI驱动

受影响产品

microsoftdefender_for_endpoint

参考资料

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49071
Vendor Advisory