BranchCache Denial of Service Vulnerability
CVE-2024-43506

7.5HIGH

Key Information:

Vendor: Microsoft
Status: Windows 10 Version 1809; Windows Server 2019; Windows Server 2019 (server Core Installation); Windows Server 2022
Vendor: CVE Published:; 8 October 2024

What is CVE-2024-43506?

The identified vulnerability in BranchCache allows an attacker to exploit a specific weakness, resulting in a Denial of Service (DoS) condition. This may disrupt service availability by overwhelming the network service, impacting the functionality for legitimate users. Administrators are advised to review their network configurations and apply recommended updates to safeguard against potential threats. Regular monitoring of system performance and network integrity is crucial to mitigate risks associated with this vulnerability.

Affected Version(s)

Windows 10 Version 1507 32-bit Systems 10.0.10240.0 < 10.0.10240.20796

Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.7428

Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.6414

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

EPSS Score

21% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 8, 2024
Vulnerability Reserved
Aug 14, 2024

Microsoft

What is CVE-2024-43506?

Affected Version(s)

References

EPSS Score

CVSS V3.1

Timeline