[CVE-Alert] CVE-2024-30040
Posted Jun 15, 2024 01:19 PM
![[Image: Nl9Dktj.png]](https://imgur.com/Nl9Dktj.png)
CVE-Alert - CVE-2024-30040
Windows MSHTML Platform Security Feature Bypass Vulnerability
Windows MSHTML Platform Security Feature Bypass Vulnerability
This CVE has not been publicly disclosed, but it has been confirmed, that it has been/is being exploited.
Code
Released: 14th, May 2024
Assigning CNA: Microsoft
Impact: Security Feature Bypass
Max Severity: Important
Weakness: CWE-20: Improper Input Validation
CVSS Source: Microsoft
CVSS: 3.1 8.8/8.2List of affected: Products - Platforms.
- Windows 10 (Version 1809) - 32 Bit Systems, x64-based Systems, ARM64-based Systems.
- Windows Server 2019 - x64-based Systems
- Windows Server 2019 (Server Core installation) - x64-based Systems
- Windows Server 2022 - x64-based Systems
- Windows 11 (Version 21H2) - x64-based Systems, ARM64-based Systems
- Windows 10 (Version 21H2) - 32-bit Systems, ARM64-based Systems
- Windows 11 (Version 22H2) - ARM64-based Systems, x64-based Systems
- Windows 10 (Version 22H2) - x64-based Systems, ARM64-based Systems, 32-bit Systems
- Windows 11 (Version 22H3) - ARM64-based Systems
- Windows 11 (Version 23h2 - x64-based Systems
- Windows Server 2022, 23H2 Edition (Server Core installation) - x64-based Systems
- Windows 10 (Version 1507) - 32-bit Systems, x64-based Systems
- Windows 10 (Version 1607) - 32-bit Systems, x64-based Systems
- Windows Server 2016 - x64-based Systems
- Windows Server 2016 (Server Core Installation) - x64-based Systems
Patch - Vendor Advisory
NVD - NIST - CVE-2024-30040
Mitre - CVE-2024-30040
