Lucene search
MicrosoftVULNRICHMENT:CVE-2024-26224HistoryApr 09, 2024 - 5:00 p.m.
CVE-2024-26224 Windows DNS Server Remote Code Execution Vulnerability
2024-04-0917:00:50
CWE-416
microsoft
github.com
1
windows
dns
server
remote code execution
vulnerability
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
6.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
CNA Affected
[
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.5696:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2019",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.17763.5696",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.5696:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2019 (Server Core installation)",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.17763.5696",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.2402:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2022",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.20348.2402",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_23h2:10.0.25398.830:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.25398.830",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6897:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2016",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.14393.6897",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6897:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2016 (Server Core installation)",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.14393.6897",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
}
]Related
cvelist
cvelist
CVE-2024-26224 Windows DNS Server Remote Code Execution Vulnerability
2024-04-09 17:00:50
nvd
nvd
CVE-2024-26224
2024-04-09 17:15:42
cve
cve
CVE-2024-26224
2024-04-09 17:15:42
mscve
mscve
Windows DNS Server Remote Code Execution Vulnerability
2024-04-09 07:00:00
nessus
nessus
mskb
mskb
April 9, 2024âKB5036899 (OS Build 14393.6897)
2024-04-09 07:00:00
April 9, 2024âKB5036896 (OS Build 17763.5696)
2024-04-09 07:00:00
April 9, 2024âKB5036909 (OS Build 20348.2402)
2024-04-09 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5036899)
2024-04-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5036896)
2024-04-10 00:00:00
kaspersky
kaspersky
KLA65511 Multiple vulnerabilities in Microsoft Windows
2024-04-09 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - April 2024
2024-04-09 20:28:17
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
6.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Related for VULNRICHMENT:CVE-2024-26224