Elevation of Privilege Vulnerability Affects Windows

CVE-2024-26169
7.8HIGH

Key Information

Vendor
Microsoft
Status
Windows 10 Version 1809
Windows Server 2019
Windows Server 2019 (server Core Installation)
Windows Server 2022
Vendor
CVE Published:
12 March 2024

Badges

😄 Trended👾 Exploit Exists📰 News Worthy

Summary

The CVE-2024-26169 is an elevation of privilege vulnerability that affects Windows. It has been exploited, although it is not specified whether by ransomware groups. This vulnerability allows attackers to gain unauthorized access and control over affected systems, posing a significant risk, potentially leading to data breaches, system compromise, and further spread of malware. The NVD Description specifies that it affects the Windows Error Reporting Service, and it is a Local Privilege Escalation (LPE) exploit.

CISA Reported

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2024-26169 as being exploited and is known by the CISA as enabling ransomware campaigns.

The CISA's recommendation is: Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.

Affected Version(s)

Windows 10 Version 1809 < 10.0.17763.5576

Windows Server 2019 < 10.0.17763.5576

Windows Server 2019 (Server Core installation) < 10.0.17763.5576

News Articles

favicon imageBleepingComputer

CISA warns of Windows bug exploited in ransomware attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity Windows vulnerability abused in ransomware attacks as a zero-day to its catalog of actively exploited security bugs.

5 months ago

favicon imageSecurityWeek

Ransomware Group May Have Exploited Windows Vulnerability as Zero-Day

The Black Basta ransomware gang may have exploited the Windows privilege escalation flaw CVE-2024-26169 before it was patched.

5 months ago

favicon image

Ransomware crew may have exploited Windows EoP bug as 0-day

The Black Basta ransomware gang may have exploited a now-patched Windows privilege escalation bug as a zero-day, according to Symantec's threat hunters. Microsoft plugged the hole in the Windows Error...

5 months ago

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability started trending.

  • 👾

    Exploit exists.

  • First article discovered by dailydarkweb.net

  • Vulnerability published.

  • Vulnerability Reserved.

Collectors

NVD DatabaseMitre DatabaseCISA DatabaseMicrosoft Feed7 News Article(s)
.