Windows Themes Spoofing Vulnerability: A Growing Concern
CVE-2024-38030
Key Information:
- Vendor
Microsoft
- Status
- Vendor
- CVE Published:
- 9 July 2024
Badges
What is CVE-2024-38030?
Windows Themes Spoofing Vulnerability
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
Windows 10 Version 1507 32-bit Systems 10.0.10240.0 < 10.0.10240.20710
Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.7159
Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.6054
News Articles
CyberSecurityNewsCVE-2024-38030New Windows Theme Zero-Day Vulnerability Let Attackers Steal Credentials
New identical Windows Theme Zero-Day Vulnerability Let Attackers Steal Credentials vulnerability that might allow attackers to obtain NTLM credentials of compromised systems while fixing CVE-2024-38030, a medium-severity Windows Themes spoofing issue.
Recurring Windows Flaw Could Expose User Credentials
Now a zero-day, the vulnerability enables NTLM hash theft, an issue that Microsoft has already fixed twice before.
New Windows Themes zero-day gets free, unofficial patches
Free unofficial patches are now available for a new Windows Themes zero-day vulnerability that allows attackers to steal a target's NTLM credentials remotely.
References
EPSS Score
70% chance of being exploited in the next 30 days.
CVSS V3.1
Timeline
- 👾
Exploit known to exist
- 📰
First article discovered by Help Net Security
Vulnerability published