Windows Kernel Elevation of Privilege Vulnerability - 20240429001¶
Overview¶
The Windows Kernel Elevation of Privilege vulnerability allows authenticated attackers to escalate privileges to the SYSTEM level, granting them full control over affected systems.
What is vulnerable?¶
| CVE | Severity | CVSS | Product(s) Affected |
|---|---|---|---|
| CVE-2024-21345 | High | 8.8 | Windows Server 2022, 23H2 Edition (Server Core installation) |
Recommendation¶
The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe (refer Patch Management):
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21345