PT-2024-6243 · Microsoft · Windows
Published
2024-09-10
·
Updated
2024-09-17
·
CVE-2024-43458
CVSS v3.1
7.7
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Windows versions prior to the fixed version
Description
The issue is related to an uninitialized pointer in the Windows Networking service, which can be exploited by a remote attacker to disclose protected information. This can potentially allow an attacker to obtain sensitive information and affect the system.
Recommendations
For Windows versions prior to the fixed version, update the system to the latest version to mitigate the risk of remote attacks.
As a temporary workaround, consider restricting access to the Windows Networking service until a patch is available.
Fix
Use of Uninitialized Resource
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows