Description
Microsoft Management Console Remote Code Execution Vulnerability
Reserved 2024-08-14 | Published 2024-10-08 | Updated 2024-12-31 | Assigner
microsoftHIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C
CISA Known Exploited Vulnerability
Date added 2024-10-08 | Due date 2024-10-29
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Problem types
CWE-707: Improper Neutralization
Product status
10.0.17763.0 before 10.0.17763.6414
affected
10.0.17763.0 before 10.0.17763.6414
affected
10.0.17763.0 before 10.0.17763.6414
affected
10.0.20348.0 before 10.0.20348..2762
affected
10.0.0 before 10.0.22000.3260
affected
10.0.19043.0 before 10.0.19044.5011
affected
10.0.22621.0 before 10.0.22621.4317
affected
10.0.19045.0 before 10.0.19045.5011
affected
10.0.22631.0 before 10.0.22631.4317
affected
10.0.22631.0 before 10.0.22631.4317
affected
10.0.25398.0 before 10.0.25398.1189
affected
10.0.26100.0 before 10.0.26100.2033
affected
10.0.10240.0 before 10.0.10240.20796
affected
10.0.14393.0 before 10.0.14393.7428
affected
10.0.14393.0 before 10.0.14393.7428
affected
10.0.14393.0 before 10.0.14393.7428
affected
6.0.6003.0 before 6.0.6003.22918
affected
6.0.6003.0 before 6.0.6003.22918
affected
6.0.6003.0 before 6.0.6003.22918
affected
6.1.7601.0 before 6.1.7601.27366
affected
6.1.7601.0 before 6.1.7601.27366
affected
6.2.9200.0 before 6.2.9200.25118
affected
6.2.9200.0 before 6.2.9200.25118
affected
6.3.9600.0 before 6.3.9600.22221
affected
6.3.9600.0 before 6.3.9600.22221
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43572 (Microsoft Management Console Remote Code Execution Vulnerability) vendor-advisory
cve.org (CVE-2024-43572)
nvd.nist.gov (CVE-2024-43572)
Download JSON
Subscribe to our newsletter to learn more about our work.
