Description
Windows Common Log File System Driver Elevation of Privilege Vulnerability
Reserved 2024-08-14 | Published 2024-10-08 | Updated 2024-12-10 | Assigner
microsoftHIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Problem types
CWE-59: Improper Link Resolution Before File Access ('Link Following')
Product status
10.0.0 before 10.0.17763.6414
affected
10.0.0 before 10.0.17763.6414
affected
10.0.0 before 10.0.17763.6414
affected
10.0.0 before 10.0.20348..2762
affected
10.0.0 before 10.0.22000.3260
affected
10.0.0 before 10.0.19044.5011
affected
10.0.0 before 10.0.22621.4317
affected
10.0.0 before 10.0.19045.5011
affected
10.0.0 before 10.0.22631.4317
affected
10.0.0 before 10.0.22631.4317
affected
10.0.0 before 10.0.25398.1189
affected
10.0.0 before 10.0.10240.20796
affected
10.0.0 before 10.0.14393.7428
affected
10.0.0 before 10.0.14393.7428
affected
10.0.0 before 10.0.14393.7428
affected
6.0.0 before 6.0.6003.22918
affected
6.0.0 before 6.0.6003.22918
affected
6.0.0 before 6.0.6003.22918
affected
6.1.0 before 6.1.7601.27366
affected
6.0.0 before 6.1.7601.27366
affected
6.2.0 before 6.2.9200.25118
affected
6.2.0 before 6.2.9200.25118
affected
6.3.0 before 6.3.9600.22221
affected
6.3.0 before 6.3.9600.22221
affected
10.0.0 before 10.0.26100.2033
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43501 (Windows Common Log File System Driver Elevation of Privilege Vulnerability) vendor-advisory
cve.org (CVE-2024-43501)
nvd.nist.gov (CVE-2024-43501)
Download JSON
Subscribe to our newsletter to learn more about our work.