Lucene search

MicrosoftMS:CVE-2024-21315

HistoryFeb 20, 2024 - 8:00 a.m.

Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability

2024-02-2008:00:00

Microsoft

msrc.microsoft.com

microsoft

defender

endpoint

privilege

vulnerability

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.3

Confidence

Low

EPSS

Percentile

9.0%

JSON

Affected configurations

Vulners

Node

microsoftdefender_for_endpointRange<10.0.25398.531

microsoftdefender_for_endpointRange<10.0.19045.3693

microsoftdefender_for_endpointRange<10.0.22621.2715

microsoftdefender_for_endpointRange<10.0.22631.2715

microsoftdefender_for_endpointRange<6.3.9600.21813

microsoftdefender_for_endpointRange<10.0.14393.6452

microsoftdefender_for_endpointRange<6.2.9200.24710

microsoftdefender_for_endpointRange<10.0.19045.3693

microsoftdefender_for_endpointRange<10.0.22621.2715

microsoftdefender_for_endpointRange<10.0.22631.2715

microsoftdefender_for_endpointRange<10.0.10240.20308

microsoftdefender_for_endpointRange<10.0.19043.3693

microsoftdefender_for_endpointRange<10.0.19041.3693

microsoftdefender_for_endpointRange<10.0.22000.2600

microsoftdefender_for_endpointRange<6.2.9200.24569

microsoftdefender_for_endpointRange<10.0.20348.2113

microsoftdefender_for_endpointRange<10.0.17763.5122

VendorProductVersionCPE
microsoftdefender_for_endpoint*cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	defender_for_endpoint	*	cpe:2.3:a:microsoft:defender_for_endpoint::::::::

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.3

Confidence

Low

EPSS

Percentile

9.0%

JSON

Related for MS:CVE-2024-21315