Assigner | microsoft |
Reserved | 2024-03-14 |
Published | 2024-04-09 |
Updated | 2024-07-05 |
Description
Windows Authentication Elevation of Privilege Vulnerability
MEDIUM: 4.3 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C |
Problem types
CWE-327: Use of a Broken or Risky Cryptographic Algorithm
Product status
10.0.0 before 10.0.17763.5696
affected
10.0.0 before 10.0.17763.5696
affected
10.0.0 before 10.0.20348.2402
affected
10.0.0 before 10.0.25398.830
affected
10.0.0 before 10.0.14393.6897
affected
10.0.0 before 10.0.14393.6897
affected
6.0.0 before 6.0.6003.22618
affected
6.0.0 before 6.0.6003.22618
affected
6.0.0 before 6.0.6003.22618
affected
6.1.0 before 6.1.7601.27067
affected
6.0.0 before 6.1.7601.27067
affected
6.2.0 before 6.2.9200.24821
affected
6.2.0 before 6.2.9200.24821
affected
6.3.0 before 6.3.9600.21924
affected
6.3.0 before 6.3.9600.21924
affected
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29056 (Windows Authentication Elevation of Privilege Vulnerability) vendor-advisory
cve.org CVE-2024-29056
nvd.nist.gov CVE-2024-29056
Download JSON