Lucene search
MicrosoftVULNRICHMENT:CVE-2024-30030HistoryMay 14, 2024 - 4:57 p.m.
CVE-2024-30030 Win32k Elevation of Privilege Vulnerability
2024-05-1416:57:22
CWE-476
microsoft
github.com
2
win32k elevation privilege
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
6.8 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
52.6%
CNA Affected
[
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22668:*:*:*:*:*:x64:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2008 Service Pack 2",
"versions": [
{
"status": "affected",
"version": "6.0.0",
"lessThan": "6.0.6003.22668",
"versionType": "custom"
}
],
"platforms": [
"32-bit Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22668:*:*:*:*:*:x64:*",
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22668:*:*:*:*:*:x86:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
"versions": [
{
"status": "affected",
"version": "6.0.0",
"lessThan": "6.0.6003.22668",
"versionType": "custom"
}
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22668:*:*:*:*:*:x86:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2008 Service Pack 2",
"versions": [
{
"status": "affected",
"version": "6.0.0",
"lessThan": "6.0.6003.22668",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.27117:*:*:*:*:*:x64:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2008 R2 Service Pack 1",
"versions": [
{
"status": "affected",
"version": "6.1.0",
"lessThan": "6.1.7601.27117",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.27117:*:*:*:*:*:x64:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
"versions": [
{
"status": "affected",
"version": "6.0.0",
"lessThan": "6.1.7601.27117",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
}
]Related
cvelist
cvelist
CVE-2024-30030 Win32k Elevation of Privilege Vulnerability
2024-05-14 16:57:22
mscve
mscve
Win32k Elevation of Privilege Vulnerability
2024-05-14 07:00:00
nvd
nvd
CVE-2024-30030
2024-05-14 17:17:02
cve
cve
CVE-2024-30030
2024-05-14 17:17:02
thn
thn
Microsoft Patches 61 Flaws, Including Two Actively Exploited Zero-Days
2024-05-15 07:17:00
mskb
mskb
May 14, 2024âKB5037803 (Security-only update)
2024-05-14 07:00:00
May 14, 2024âKB5037836 (Security-only update)
2024-05-14 07:00:00
May 14, 2024âKB5037780 (Monthly Rollup)
2024-05-14 07:00:00
nessus
nessus
KB5037803: Windows Server 2008 R2 Security Update (May 2024)
2024-05-14 00:00:00
KB5037836: Windows Server 2008 Security Update (May 2024)
2024-05-14 00:00:00
kaspersky
kaspersky
KLA67434 Multiple vulnerabilities in Microsoft Products (ESU)
2024-05-14 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - May 2024
2024-05-14 20:25:36
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
6.8 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
52.6%
Related for VULNRICHMENT:CVE-2024-30030