Overview
- Description
- Microsoft Configuration Manager Remote Code Execution Vulnerability
- Source
- secure@microsoft.com
- NVD status
- Awaiting Analysis
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
Weaknesses
- secure@microsoft.com
- CWE-89
Social media
- Hype score
- Not currently trending
🚨 Microsoft’s October update addresses 117 CVEs, including two actively exploited vulnerabilities: CVE-2024-43572 (RCE in MMC) CVE-2024-43573 (Platform Spoofing in MSHTML) Critical CVE-2024-43468 (CVSS 9.8) could lead to RCE on servers. Apply patches ASAP to stay secure! https:
@UpriteServices
24 Oct 2024
56 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
10月の月例セキュリティ更新では、Microsoft Configuration Manageの修正がでています。現時点で悪用はみられていませんが、リモートで認証なしで悪用できる脆弱性なので早めのパッチを推奨です:[CVE-2024-43468] Configuration Manager に対する深刻度の高い脆弱性について https://t.co/QzCbknyyhC
@EurekaBerry
951 Impressions
2 Retweets
7 Likes
0 Bookmarks
0 Replies
0 Quotes
Fortra’s Tyler Reguly is featured in Forbes discussing the critical CVE-2024-43468 vulnerability. He warns that mitigating this vulnerability is far from simple.https://t.co/Dnyhff3wTC #PatchTuesday https://t.co/YJU3J5sKvA
@fortraofficial
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes