CVE-2024-38100

Published Jul 9, 2024

Last updated 7 months ago

CVSS high 7.8
FakePotato

Overview

Description
Windows File Explorer Elevation of Privilege Vulnerability
Source
secure@microsoft.com
NVD status
Analyzed

Risk scores

CVSS 3.1

Type
Primary
Base score
7.8
Impact score
5.9
Exploitability score
1.8
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

nvd@nist.gov
NVD-CWE-Other
secure@microsoft.com
CWE-284

Social media

Hype score
Not currently trending

  1. Windows File Explorerの特権昇格脆弱性CVE-2024-38100が悪用される危険性 - Reinforz https://t.co/mOEac5eD8O #izumino_trend

    @sec_trend

    23 Jan 2025

    22 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. Windows File Explorer Privilege Escalation (CVE-2024-38100) Exploited - First Hackers News https://t.co/9Ki7C7RgNr https://t.co/FWzn5xwyMu

    @Info_FHNews

    23 Jan 2025

    29 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. Una falla de seguridad en el Explorador de archivos de Windows, identificada como CVE-2024-38100, permite el acceso de nivel de administrador a los sistemas. DCOM ShellWindows está configurado para ejecutarse bajo el mismo contexto de seguridad que el usuario inició sesión. 🧉

    @MarquisioX

    22 Jan 2025

    36 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  4. [1day1line] CVE-2024-38100: Windows File Explorer Elevation of Privilege Vulnerability https://t.co/XY99x43d6t The vulnerability was caused by unnecessary permissions being set in Access Security when explorer.exe was running at High Integrity Level. Therefore, the… https://t.

    @hackyboiz

    22 Jan 2025

    3146 Impressions

    21 Retweets

    73 Likes

    28 Bookmarks

    0 Replies

    0 Quotes

Configurations

References