Description
Windows Telephony Service Remote Code Execution Vulnerability
Reserved 2024-08-14 | Published 2024-11-12 | Updated 2024-12-10 | Assigner
microsoftHIGH: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Problem types
CWE-122: Heap-based Buffer Overflow
Product status
10.0.0 before 10.0.17763.6532
affected
10.0.0 before 10.0.17763.6532
affected
10.0.0 before 10.0.17763.6532
affected
10.0.0 before 10.0.20348.2849
affected
10.0.0 before 10.0.20348.2819
affected
10.0.0 before 10.0.19044.5131
affected
10.0.0 before 10.0.22621.4460
affected
10.0.0 before 10.0.19045.5131
affected
10.0.0 before 10.0.22631.4460
affected
10.0.0 before 10.0.22631.4460
affected
10.0.0 before 10.0.25398.1251
affected
10.0.0 before 10.0.26100.2314
affected
10.0.0 before 10.0.26100.2240
affected
10.0.0 before 10.0.10240.20826
affected
10.0.0 before 10.0.14393.7515
affected
10.0.0 before 10.0.14393.7515
affected
10.0.0 before 10.0.14393.7515
affected
6.0.0 before 6.0.6003.22966
affected
6.0.0 before 6.0.6003.22966
affected
6.0.0 before 6.0.6003.22966
affected
6.1.0 before 6.1.7601.27415
affected
6.0.0 before 6.1.7601.27415
affected
6.2.0 before 6.2.9200.25165
affected
6.2.0 before 6.2.9200.25165
affected
6.3.0 before 6.3.9600.22267
affected
6.3.0 before 6.3.9600.22267
affected
10.0.0 before 10.0.26100.2314
affected
10.0.0 before 10.0.26100.2240
affected
10.0.0 before 10.0.26100.2314
affected
10.0.0 before 10.0.26100.2240
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43620 (Windows Telephony Service Remote Code Execution Vulnerability) vendor-advisory
cve.org (CVE-2024-43620)
nvd.nist.gov (CVE-2024-43620)
Download JSON
Subscribe to our newsletter to learn more about our work.