Assigner | microsoft |
Reserved | 2024-02-15 |
Published | 2024-04-09 |
Updated | 2024-06-13 |
Description
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
MEDIUM: 5.5 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C |
Problem types
CWE-908: Use of Uninitialized Resource
Product status
10.0.0 before 10.0.17763.5696
affected
10.0.0 before 10.0.17763.5696
affected
10.0.0 before 10.0.17763.5696
affected
10.0.0 before 10.0.20348.2402
affected
10.0.0 before 10.0.22000.2899
affected
10.0.0 before 10.0.19044.4291
affected
10.0.0 before 10.0.22621.3447
affected
10.0.0 before 10.0.19045.4291
affected
10.0.0 before 10.0.22631.3447
affected
10.0.0 before 10.0.22631.3447
affected
10.0.0 before 10.0.25398.830
affected
10.0.0 before 10.0.10240.20596
affected
10.0.0 before 10.0.14393.6897
affected
10.0.0 before 10.0.14393.6897
affected
10.0.0 before 10.0.14393.6897
affected
6.3.0 before 6.3.9600.21924
affected
6.3.0 before 6.3.9600.21924
affected
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26209 (Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability) vendor-advisory
cve.org CVE-2024-26209
nvd.nist.gov CVE-2024-26209
Download JSON