Hyper-V Denial of Service Vulnerability
CVE-2024-21408

5.5MEDIUM

Key Information:

Vendor

Microsoft
Status
Windows 10 Version 1809
Windows Server 2019
Windows Server 2019 (server Core Installation)
Windows Server 2022
Vendor
CVE Published:
12 March 2024

Badges

đź“° News Worthy

What is CVE-2024-21408?

A denial of service vulnerability exists in Microsoft Windows Hyper-V that could cause the affected system to become unresponsive. Attackers leveraging this vulnerability can disrupt services hosted on Hyper-V, leading to potential service outages and significant operational disruptions. It is important for organizations using affected versions to apply the latest security patches provided by Microsoft to mitigate potential risks associated with this vulnerability.

Affected Version(s)

Windows 10 Version 1507 x64-based Systems 10.0.10240.0 < 10.0.10240.20526

Windows 10 Version 1607 x64-based Systems 10.0.14393.0 < 10.0.14393.6796

Windows 10 Version 1809 x64-based Systems 10.0.17763.0 < 10.0.17763.5576

News Articles

favicon imageCrowdStrike

March 2024 Patch Tuesday: Updates and Analysis

Microsoft has released security updates for 60 vulnerabilities, including two critical bugs and 18 RCE vulnerabilities, for its March 2024 Patch Tuesday rollout.

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...
vendor-advisory

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • đź“°

    First article discovered by CrowdStrike

  • Vulnerability published

  • Vulnerability Reserved

.