Microsoft Defender for IoT Remote Code Execution Vulnerability

CVE-2024-21322
7.2HIGH

Key Information

Vendor
Microsoft
Status
Microsoft Defender For Iot
Vendor
CVE Published:
9 April 2024

Badges

👾 Exploit Exists📰 News Worthy

Summary

Microsoft Defender for IoT Remote Code Execution Vulnerability

Affected Version(s)

Microsoft Defender for IoT < 24.1.3

News Articles

favicon imageCrowdStrike.com

April 2024 Patch Tuesday: Updates and Analysis | CrowdStrike

Microsoft released patches for 150 vulnerabilities, including 3 critical RCE vulnerabilities, for its April 2024 Patch Tuesday rollout.

7 months ago

CVSS V3.1

Score:
7.2
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • 👾

    Exploit exists.

  • First article discovered by CrowdStrike.com

  • Vulnerability published.

  • Vulnerability Reserved.

Collectors

NVD DatabaseMitre DatabaseMicrosoft Feed1 News Article(s)
.