Lucene search
MicrosoftCVE-2024-20688HistoryApr 09, 2024 - 5:15 p.m.
CVE-2024-20688
2024-04-0917:15:33
CWE-121
microsoft
web.nvd.nist.gov
103
secure boot
vulnerability
nvd
CVSS3
7.1
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
25.2%
Secure Boot Security Feature Bypass Vulnerability
Affected configurations
Node
microsoftwindows_server_2012Range6.2.0â6.2.9200.24821
Node
microsoftwindows_server_2012Range6.2.0â6.2.9200.24821
Node
microsoftwindows_server_2012Range6.3.0â6.3.9600.21924r2
Node
microsoftwindows_server_2012Range6.3.0â6.3.9600.21924r2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_server_2012 | * | cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2012 | * | cpe:2.3:o:microsoft:windows_server_2012:*:r2:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Windows Server 2012",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24821:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.2.0",
"lessThan": "6.2.9200.24821",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2012 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24821:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.2.0",
"lessThan": "6.2.9200.24821",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2012 R2",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.21924:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.3.0",
"lessThan": "6.3.9600.21924",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2012 R2 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.21924:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.3.0",
"lessThan": "6.3.9600.21924",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2024-20688 Secure Boot Security Feature Bypass Vulnerability
2024-04-09 17:00:06
cvelist
cvelist
CVE-2024-20688 Secure Boot Security Feature Bypass Vulnerability
2024-04-09 17:00:06
nvd
nvd
CVE-2024-20688
2024-04-09 17:15:33
mscve
mscve
Secure Boot Security Feature Bypass Vulnerability
2024-04-09 07:00:00
mskb
mskb
April 9, 2024âKB5036969 (Monthly Rollup)
2024-04-09 07:00:00
April 9, 2024âKB5036960 (Monthly Rollup)
2024-04-09 07:00:00
nessus
nessus
KB5036969: Windows Server 2012 Security Update (April 2024)
2024-04-09 00:00:00
KB5036960: Windows Server 2012 R2 Security Update (April 2024)
2024-04-09 00:00:00
kaspersky
kaspersky
KLA65512 Multiple vulnerabilities in Microsoft Products (ESU)
2024-04-09 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - April 2024
2024-04-09 20:28:17
CVSS3
7.1
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
25.2%
Related for CVE-2024-20688