Home
Description
Microsoft Windows SCSI Class System File Elevation of Privilege Vulnerability
PUBLISHED Reserved 2023-12-08 | Published 2024-03-12 | Updated 2025-05-03 | Assigner microsoft
HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Problem types
CWE-197: Numeric Truncation Error
Product status
10.0.17763.0 (custom) before 10.0.17763.5576
affected
10.0.0 (custom) before 10.0.17763.5576
affected
10.0.17763.0 (custom) before 10.0.17763.5576
affected
10.0.17763.0 (custom) before 10.0.17763.5576
affected
10.0.20348.0 (custom) before 10.0.20348.2340
affected
10.0.0 (custom) before 10.0.22000.2836
affected
10.0.19043.0 (custom) before 10.0.19044.4170
affected
10.0.22621.0 (custom) before 10.0.22621.3296
affected
10.0.19045.0 (custom) before 10.0.19045.4170
affected
10.0.22631.0 (custom) before 10.0.22631.3296
affected
10.0.22631.0 (custom) before 10.0.22631.3296
affected
10.0.25398.0 (custom) before 10.0.25398.763
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21434 (Microsoft Windows SCSI Class System File Elevation of Privilege Vulnerability) vendor-advisory
cve.org
(CVE-2024-21434)
nvd.nist.gov
(CVE-2024-21434)
Download JSON
