CVE-2024-29056
Severity CVSS v4.0:
Pending analysis
Type:
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
Publication date:
09/04/2024
Last modified:
26/04/2024
Description
Windows Authentication Elevation of Privilege Vulnerability
Impact
Base Score 3.x
4.30
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:microsoft:windows_server_2008:-:r2:*:*:*:*:x64:* | ||
| cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:* | ||
| cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:* | ||
| cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:x64:* | ||
| cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:datacenter:*:x64:* | ||
| cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:x64:* | ||
| cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* | 10.0.14393.6897 (including) | |
| cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:* | 10.0.17763.5696 (excluding) | |
| cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:* | 10.0.20348.2402 (excluding) | |
| cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:* | 10.0.25398.830 (excluding) |
To consult the complete list of CPE names with products and versions, see this page