Although the exploit targets functionality predominantly used by deprecated browser Internet Explorer, exploitation is also possible if Microsoft Edge allows opening pages in IE mode. In this mode, Microsoft Edge makes use of the vulnerable MSHTML platform, but only when group policy is specifically configured to allow it.
Insights
Analysis from the Intruder Security Team
Published Nov 14, 2024 Updated Nov 14, 2024
Overview
- Description
- NTLM Hash Disclosure Spoofing Vulnerability
- Source
- secure@microsoft.com
- NVD status
- Undergoing Analysis
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 6.5
- Impact score
- 3.6
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
Known exploits
Data from CISA
Microsoft Windows NTLMv2 Hash Disclosure Spoofing Vulnerability
Nov 12, 2024
Dec 3, 2024
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Weaknesses
- secure@microsoft.com
- CWE-73