logo
Home/CVEs/CVE-2024-38080/

CVE-2024-38080 - Microsoft Windows Hyper-V Privilege Escalation Vulnerability

Project:Microsoft

Product:Windows

Date Added:2024-07-09Due Date:2024-07-30

Vulnerability Name

Microsoft Windows Hyper-V Privilege Escalation Vulnerability

Description

Microsoft Windows Hyper-V contains a privilege escalation vulnerability that allows a local attacker with user permissions to gain SYSTEM privileges.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-38080

https://nvd.nist.gov/vuln/detail/CVE-2024-38080

Related News Articles

Zero-day patched by Microsoft has been exploited by attackers for over a year (CVE-2024-38112)July 10, 2024

Microsoft's July Update Patches 143 Flaws, Including Two Actively ExploitedJuly 10, 2024

Microsoft fixes two zero-days exploited by attackers (CVE-2024-38080, CVE-2024-38112)July 10, 2024

Microsoft July 2024 Patch Tuesday fixes 142 flaws, 4 zero-daysJuly 10, 2024