Lucene search
MicrosoftCVELIST:CVE-2024-38072HistoryJul 09, 2024 - 5:02 p.m.
CVE-2024-38072 Windows Remote Desktop Licensing Service Denial of Service Vulnerability
2024-07-0917:02:33
CWE-476
microsoft
www.cve.org
5
windows remote desktop service vulnerability denial of service
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C
EPSS
0.002
Percentile
61.8%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Windows Server 2019",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.6054:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.17763.6054",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2019 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.6054:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.17763.6054",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2022",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.2582:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.20348.2582",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_23h2:10.0.25398.1009:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.25398.1009",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2016",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7159:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.14393.7159",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2016 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7159:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.14393.7159",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
cve
cve
CVE-2024-38072
2024-07-09 17:15:41
vulnrichment
vulnrichment
nvd
nvd
CVE-2024-38072
2024-07-09 17:15:41
mscve
mscve
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
2024-07-09 07:00:00
nessus
nessus
kaspersky
kaspersky
KLA70416 Multiple vulnerabilities in Microsoft Windows
2024-07-09 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5040434)
2024-07-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5040430)
2024-07-10 00:00:00
mskb
mskb
July 9, 2024âKB5040434 (OS Build 14393.7159)
2024-08-13 07:00:00
July 9, 2024âKB5040430 (OS Build 17763.6054)
2024-08-13 07:00:00
July 9, 2024âKB5040437 (OS Build 20348.2582)
2024-08-13 07:00:00
rapid7blog
rapid7blog
Patch Tuesday - July 2024
2024-07-09 20:03:58
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C
EPSS
0.002
Percentile
61.8%
Related for CVELIST:CVE-2024-38072