Remote Code Execution Vulnerability Affects Microsoft Management Console
Key Information
- Vendor
- Microsoft
- Status
- Windows 10 Version 1809
- Windows Server 2019
- Windows Server 2019 (server Core Installation)
- Windows Server 2022
- Vendor
- CVE Published:
- 8 October 2024
Badges
Summary
Microsoft Management Console Remote Code Execution Vulnerability
CISA Reported
CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2024-43572 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace
The CISA's recommendation is: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Affected Version(s)
Windows 10 Version 1809 < 10.0.17763.6414
Windows Server 2019 < 10.0.17763.6414
Windows Server 2019 (Server Core installation) < 10.0.17763.6414
News Articles
Help Net Security CVE-2024-43573CVE-2024-43572Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools - Help Net Security
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft patches two zero-days exploited in the wild
1 month ago
The Cyber Express CVE-2024-43573CVE-2024-43572Microsoft Patch Tuesday: October 2024 CVE Updates
Microsoft’s October 2024 Patch Tuesday addresses 117 CVEs, including critical zero-day vulnerabilities.
1 month ago
Patch Tuesday, October 2024 Edition
Microsoft today released security updates to fix at least 117 security holes in Windows computers and other software, including two vulnerabilities that are already seeing active attacks. Also, Adobe plugged 52 security holes across a range of products, and Apple…
1 month ago
CVSS V3.1
Timeline
- đź‘ľ
Exploit exists.
First article discovered by CrowdStrike.com
Vulnerability published.
Vulnerability Reserved.