CVE-2024-49112

Published Dec 12, 2024

Last updated 2 days ago

CVSS critical 9.8

Overview

Description
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
Source
secure@microsoft.com
NVD status
Received

Risk scores

CVSS 3.1

Type
Primary
Base score
9.8
Impact score
5.9
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity
CRITICAL

Weaknesses

secure@microsoft.com
CWE-190

Social media

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score

15

  1. 🚨 New Blog Alert! 🚨 CVE-2024-49112 is making waves as a critical vulnerability in Microsoft's LDAP service. Learn about its risks, technical details, and how to protect your systems from potential exploits. Stay informed and secure! 🌐🛡️ (📍Link in the first comment) https:

    @AfonsoInfante

    12 Dec 2024

    229 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  2. Unauthenticated Remote Code Execution (RCE) on Domain Controllers (DC). It does not get worse than that. Probably will be included in #ransomware campaigns. Any technical analysis of CVE-2024-49112 published? CC: @gentilkiwi @harmj0y @_wald0 https://t.co/JOL9w1KDOc

    @TalBeerySec

    12 Dec 2024

    37572 Impressions

    121 Retweets

    385 Likes

    223 Bookmarks

    8 Replies

    8 Quotes

  3. Microsoft December 2024 Patch Tuesday addressed actively exploited zero-day: CVE-2024-49138 CVE-2024-49138 CVE-2024-49112 CVE-2024-49117 https://t.co/S0v1lkqBc2

    @vault33org

    11 Dec 2024

    140 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  4. CVE-2024-49112 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability https://t.co/vGzN1WW6ez

    @CVEnew

    10 Dec 2024

    196 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. A new vulnerability with increased severity was disclosed for Microsoft Windows (CVE-2024-49112) https://t.co/6MtkfnTBTP

    @vuldb

    10 Dec 2024

    125 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. [CVE-2024-49112: CRITICAL] Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability#cybersecurity,#vulnerability https://t.co/PwdHXVziAt https://t.co/ikCrdHLvEC

    @CveFindCom

    10 Dec 2024

    137 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References