CVE-2024-30030

Опубликовано: 14 мая 2024

Источник: msrc

CVSS3: 7.8

EPSS Низкий

Описание

Win32k Elevation of Privilege Vulnerability

According to the CVSS metric, privileges required is Low (PR:L). What does that mean for this vulnerability?

To exploit this vulnerability an attacker must have an account with the User role assigned.

Продукт	Статья	Обновление
Windows Server 2008 for 32-bit Systems Service Pack 2	5037800 5037836	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2	5037800 5037836	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)	5037800 5037836	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)	5037780 5037803	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1	5037780 5037803	Monthly Rollup Security Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)	5037800 5037836	Monthly Rollup Security Only

Показывать по

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 69%

0.00589

Низкий

7.8 High

CVSS3

CVE-2024-30030

CVSS3: 7.8

nvd

больше 1 года назад

Win32k Elevation of Privilege Vulnerability

GHSA-g2v4-8532-c83r

CVSS3: 7.8

github

больше 1 года назад

Win32k Elevation of Privilege Vulnerability

BDU:2024-03822

CVSS3: 7.8

fstec

больше 1 года назад

Уязвимость компонента Win32k (Win32k.sys) операционных систем Windows, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 69%

0.00589

Низкий

7.8 High

CVSS3