July 1, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Multiple Adobe Commerce and Magento Vulnerabilities
October 21, 2024Remcos RAT – Active IOCs
October 22, 2024Multiple Adobe Commerce and Magento Vulnerabilities
October 21, 2024Remcos RAT – Active IOCs
October 22, 2024
Severity
Medium
Analysis Summary
CVE-2024-43553 CVSS:7.4
Microsoft Windows could allow a local attacker to gain elevated privileges on the system, caused by an error in the NT OS Kernel component. An attacker could exploit this vulnerability to gain elevated privileges on the system.
CVE-2024-43552 CVSS:7.3
Microsoft Windows could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a use-after-free in the Shell. By persuading a victim to open a specially crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2024-43562 CVSS:7.5
Microsoft Windows id vulnerable to a denial of service, caused by a flaw in Network Address Translation (NAT) component. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.
CVE-2024-43583 CVSS:7.8
Microsoft Windows could allow a local authenticated attacker to gain elevated privileges on the system, caused by a flaw in Winlogon Component. By sending a specially crafted request, an attacker could exploit this vulnerability to escalate privileges.
CVE-2024-43561 CVSS:6.5
Microsoft Windows id vulnerable to a denial of service, caused by a flaw in Mobile Broadband Driver component. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.
CVE-2024-43559 CVSS:6.5
Microsoft Windows id vulnerable to a denial of service, caused by a flaw in Mobile Broadband Driver component. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.
CVE-2024-43557 CVSS:6.5
Microsoft Windows is vulnerable to a denial of service, caused by an error in the Mobile Broadband Driver. A remote attacker from within the local network could exploit this vulnerability to cause a denial of service.
CVE-2024-43555 CVSS:6.5
Microsoft Windows is vulnerable to a denial of service, caused by an error in the Mobile Broadband Driver. A remote attacker from within the local network could exploit this vulnerability to cause a denial of service.
CVE-2024-43547 CVSS:6.5
Microsoft Windows could allow a remote attacker to obtain sensitive information, caused by an error in the Kerberos component. An attacker could exploit this vulnerability to obtain sensitive information.
Impact
- Information Disclosure
- Denial of Service
- Privilege Escalation
- Code Execution
Indicators of Compromise
CVE
- CVE-2024-43553
- CVE-2024-43552
- CVE-2024-43562
- CVE-2024-43583
- CVE-2024-43561
- CVE-2024-43559
- CVE-2024-43557
- CVE-2024-43555
- CVE-2024-43547
Affected Vendors
Microsoft
Affected Products
- Microsoft Windows Server 2022
- Microsoft Windows 10 Version 1809 - 10.0.0
- Microsoft Windows 11 version 22H2 - 10.0.0
- Microsoft Windows 11 version 22H3 - 10.0.0
- Microsoft Windows Server 2016 - 10.0.0
- Microsoft Windows Server 2019 - 10.0.0
- Microsoft Windows Server 2008 Service Pack 2 - 6.0.0
- Microsoft Windows Server 2019 (Server Core installation) - 10.0.0
- Microsoft Windows Server 2022 - 10.0.0
- Microsoft Windows 11 Version 23H2 - 10.0.0
- Microsoft Windows Server 2016 (Server Core installation) - 10.0.0
- Microsoft Windows Server 2008 Service Pack 2 (Server Core installation) - 6.0.0
- Microsoft Windows Server 2008 R2 Service Pack 1 - 6.1.0
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.