Microsoft Windows VMSwitch Elevation of Privilege Vulnerability

CVE-2024-43625

8.1HIGH

Key Information

Vendor: Microsoft
Status: Windows Server 2022; Windows 11 Version 22h2; Windows 11 Version 22h3; Windows 11 Version 23h2
Vendor: CVE Published:; 12 November 2024

Badges

👾 Exploit Exists📰 News Worthy

Summary

Microsoft Windows VMSwitch Elevation of Privilege Vulnerability

Affected Version(s)

Windows Server 2022 < 10.0.20348.2849

Windows Server 2022 < 10.0.20348.2819

Windows 11 version 22H2 < 10.0.22621.4460

News Articles

CrowdStrike.com

CVE-2024-43625CVE-2024-49056

November 2024 Patch Tuesday: Updates and Analysis | CrowdStrike

Microsoft has released security updates for 158 vulnerabilities, including three zero-days and four critical, for its November 2024 Patch Tuesday rollout.

2 weeks ago

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

👾
Exploit exists.
Nov 21, 2024
First article discovered by CrowdStrike.com
Nov 13, 2024
Vulnerability published.
Nov 12, 2024

Collectors

NVD DatabaseMitre DatabaseMicrosoft Feed1 News Article(s)