CVE-2024-21315

Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315	Patch Vendor Advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

OR	cpe:2.3:o:microsoft:windows_10_22h2:-::::::arm64:
	cpe:2.3:o:microsoft:windows_10_22h2:-::::::x64:

Configuration 3 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

OR	cpe:2.3:o:microsoft:windows_11_22h2:-::::::arm64:
	cpe:2.3:o:microsoft:windows_11_23h2:-::::::arm64:

Configuration 4 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

OR	cpe:2.3:o:microsoft:windows_10_1607:-::::::x64:
	cpe:2.3:o:microsoft:windows_10_1607:-::::::x86:
	cpe:2.3:o:microsoft:windows_server_2016:-:::::::*

Configuration 6 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*

Configuration 8 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

OR	cpe:2.3:o:microsoft:windows_11_22h2:-::::::x64:
	cpe:2.3:o:microsoft:windows_11_23h2:-::::::x64:

Configuration 9 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

OR	cpe:2.3:o:microsoft:windows_10_1507:-::::::x64:
	cpe:2.3:o:microsoft:windows_10_1507:-::::::x86:

Configuration 10 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

OR	cpe:2.3:o:microsoft:windows_10_21h2:-::::::arm64:
	cpe:2.3:o:microsoft:windows_10_21h2:-::::::x64:
	cpe:2.3:o:microsoft:windows_10_21h2:-::::::x86:

Configuration 11 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

OR	cpe:2.3:o:microsoft:windows_11_21h2:-::::::arm64:
	cpe:2.3:o:microsoft:windows_11_21h2:-::::::x64:

Configuration 12 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*

OR	cpe:2.3:o:microsoft:windows_10_1809:-::::::arm64:
	cpe:2.3:o:microsoft:windows_10_1809:-::::::x64:
	cpe:2.3:o:microsoft:windows_10_1809:-::::::x86:
	cpe:2.3:o:microsoft:windows_server_2019:-:::::::*

History

No history.

Information

Published : 2024-02-13 18:15

Updated : 2024-11-21 08:54

NVD link : CVE-2024-21315

Mitre link : CVE-2024-21315

CVE.ORG link : CVE-2024-21315

JSON object : View

Products Affected

microsoft

windows_server_2019
defender_for_endpoint
windows_server_2022
windows_11_23h2
windows_10_21h2
windows_11_22h2
windows_server_2012
windows_11_21h2
windows_10_1809
windows_server_2022_23h2
windows_server_2016
windows_10_22h2
windows_10_1607
windows_10_1507

CWE

CWE-20

Improper Input Validation

NVD-CWE-noinfo

{"id": "CVE-2024-21315", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "secure@microsoft.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2024-02-13T18:15:48.403", "references": [{"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315", "tags": ["Patch", "Vendor Advisory"], "source": "secure@microsoft.com"}, {"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21315", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "secure@microsoft.com", "description": [{"lang": "en", "value": "CWE-20"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability"}, {"lang": "es", "value": "Vulnerabilidad de elevaci\u00f3n de privilegios de Microsoft Defender para Endpoint Protection"}], "lastModified": "2024-11-21T08:54:05.510", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "6110E9B7-9AF4-4BB8-8E38-F2419A1E0B12", "versionEndExcluding": "10.0.25398.531"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "75CCACE6-A0EE-4A6F-BD5A-7AA504B02717"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "34FE251F-9F96-4C7A-9AE1-8040A2A98B42", "versionEndExcluding": "10.0.19045.3693"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*", "vulnerable": false, "matchCriteriaId": "A9D54EE6-30AF-411C-A285-A4DCB6C6EC06"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*", "vulnerable": false, "matchCriteriaId": "C230D3BF-7FCE-405C-B62E-B9190C995C3C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "C43F35FF-BCFC-434A-A6D4-6EDEEEC91E94", "versionEndExcluding": "10.0.22621.2715"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*", "vulnerable": false, "matchCriteriaId": "B2D24C54-F04F-4717-B614-FE67B3ED9DC0"}, {"criteria": "cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:arm64:*", "vulnerable": false, "matchCriteriaId": "B0301BA0-81DB-4FC1-9BC3-EB48A56BC608"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "89BDD39C-EED5-418E-8734-23FD425F43E4", "versionEndExcluding": "6.3.9600.21813"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "31793C00-933B-4CBB-9EAF-27AFF4C82CBE", "versionEndExcluding": "10.0.14393.6452"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", "vulnerable": false, "matchCriteriaId": "5E491E46-1917-41FE-8F9A-BB0BDDEB42C3"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", "vulnerable": false, "matchCriteriaId": "0A1BC97A-263E-4291-8AEF-02EE4E6031E9"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "51D2081C-CA6C-4F6F-8D29-FCCD64FAB4FC", "versionEndExcluding": "6.2.9200.24710"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "34FE251F-9F96-4C7A-9AE1-8040A2A98B42", "versionEndExcluding": "10.0.19045.3693"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*", "vulnerable": false, "matchCriteriaId": "1FD62DCB-66D1-4CEA-828E-0BD302AC63CA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "C43F35FF-BCFC-434A-A6D4-6EDEEEC91E94", "versionEndExcluding": "10.0.22621.2715"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*", "vulnerable": false, "matchCriteriaId": "D5EC3F68-8F41-4F6B-B2E5-920322A4A321"}, {"criteria": "cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:x64:*", "vulnerable": false, "matchCriteriaId": "8E3C1327-F331-4448-A253-00EAC7428317"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "60637E9C-A03E-4E64-B559-D817CF8AA82C", "versionEndExcluding": "10.0.10240.20308"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*", "vulnerable": false, "matchCriteriaId": "A045AC0A-471E-444C-B3B0-4CABC23E8CFB"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*", "vulnerable": false, "matchCriteriaId": "28A7FEE9-B473-48A0-B0ED-A5CC1E44194C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "8D2F0987-1200-46E8-B224-CD9E0AE33BD1", "versionEndExcluding": "10.0.19043.3693"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*", "vulnerable": false, "matchCriteriaId": "8FC46499-DB6E-48BF-9334-85EE27AFE7AF"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*", "vulnerable": false, "matchCriteriaId": "83A79DD6-E74E-419F-93F1-323B68502633"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*", "vulnerable": false, "matchCriteriaId": "61959ACC-B608-4556-92AF-4D94B338907A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "D4ADA63C-F2DA-4770-9D22-6E0A5521A4CC", "versionEndExcluding": "10.0.22000.2600"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*", "vulnerable": false, "matchCriteriaId": "F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0"}, {"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*", "vulnerable": false, "matchCriteriaId": "0C3552E0-F793-4CDD-965D-457495475805"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "C9D85511-1F11-4992-A183-0B6C78D5F8C2", "versionEndExcluding": "6.2.9200.24569"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "51D16F16-CDCD-48EE-B0A7-02DC0F2317E8", "versionEndExcluding": "10.0.20348.2113"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:defender_for_endpoint:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "53FF14C4-9735-4A8B-8DDE-D1F852346200", "versionEndExcluding": "10.0.17763.5122"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:arm64:*", "vulnerable": false, "matchCriteriaId": "73D24713-D897-408D-893B-77A61982597D"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*", "vulnerable": false, "matchCriteriaId": "306B7CE6-8239-4AED-9ED4-4C9F5B349F58"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*", "vulnerable": false, "matchCriteriaId": "345FCD64-D37B-425B-B64C-8B1640B7E850"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "secure@microsoft.com"}