BranchCache Denial of Service Vulnerability
CVE-2024-38149

7.5HIGH

Key Information:

Vendor: Microsoft
Status: Windows 10 Version 1809; Windows Server 2019; Windows Server 2019 (server Core Installation); Windows Server 2022
Vendor: CVE Published:; 8 October 2024

What is CVE-2024-38149?

The BranchCache Denial of Service vulnerability impacts Microsoft BranchCache, which is utilized to optimize network traffic and enhance the performance of content delivery. This vulnerability can allow an attacker to disrupt branch office operations, resulting in a denial of service that affects multiple users and operations. Organizations using affected versions should prioritize patching and implement security best practices to safeguard their systems from potential exploitation.

Affected Version(s)

Windows 10 Version 1507 32-bit Systems 10.0.10240.0 < 10.0.10240.20796

Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.7428

Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.6414

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

EPSS Score

21% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 8, 2024
Vulnerability Reserved
Jun 11, 2024