Assigner | microsoft |
Reserved | 2023-12-08 |
Published | 2024-01-09 |
Updated | 2024-07-19 |
Description
Microsoft Identity Denial of service vulnerability
MEDIUM: 6.8 | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H/E:U/RL:O/RC:C |
Problem types
CWE-20: Improper Input Validation
Product status
6.0.0 before 6.0.26
affected
17.2.0 before 17.2.23
affected
17.6.0 before 17.6.11
affected
17.4.0 before 17.4.15
affected
17.8.0 before 17.8.4
affected
7.0.0 before 7.0.15
affected
1.0.0 before 8.0.1
affected
Any version before 6.34.0
affected
Any version before 7.1.2
affected
Any version before 6.34.0
affected
Any version before 5.7.0
affected
Any version before 7.1.2
affected
Any version before 5.7.0
affected
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319 (Microsoft Identity Denial of service vulnerability) vendor-advisory
cve.org CVE-2024-21319
nvd.nist.gov CVE-2024-21319
Download JSON