PT-2024-1021 · Microsoft · Virtual Hard Disk+1

Sat0Rn3

Published

2024-01-09

Updated

2024-05-29

CVE-2024-20658

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Microsoft Virtual Hard Disk (affected versions not specified)

Description The issue is related to insufficient access restrictions in Microsoft Virtual Hard Disk, allowing an attacker to elevate their privileges. This can affect the system, potentially leading to increased access for unauthorized users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

LPE

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-264

Related Identifiers

BDU:2024-00219

CVE-2024-20658

Affected Products

Virtual Hard Disk

Windows

PT-2024-1021 · Microsoft · Virtual Hard Disk+1

CVE-2024-20658

Weakness Enumeration

Related Identifiers

Affected Products

References · 11