CVE-2024-30020

Description

Windows Cryptographic Services Remote Code Execution Vulnerability

Reserved 2024-03-22 | Published 2024-05-14 | Updated 2025-05-03 | Assigner microsoft

Problem types

CWE-122: Heap-based Buffer Overflow

Product status

10.0.17763.0 before 10.0.17763.5820
affected

10.0.0 before 10.0.17763.5820
affected

10.0.17763.0 before 10.0.17763.5820
affected

10.0.17763.0 before 10.0.17763.5820
affected

10.0.20348.0 before 10.0.20348.2461
affected

10.0.0 before 10.0.22000.2960
affected

10.0.19043.0 before 10.0.19044.4412
affected

10.0.22621.0 before 10.0.22621.3593
affected

10.0.19045.0 before 10.0.19045.4412
affected

10.0.22631.0 before 10.0.22631.3593
affected

10.0.22631.0 before 10.0.22631.3593
affected

10.0.25398.0 before 10.0.25398.887
affected

10.0.10240.0 before 10.0.10240.20651
affected

10.0.14393.0 before 10.0.14393.6981
affected

10.0.14393.0 before 10.0.14393.6981
affected

10.0.14393.0 before 10.0.14393.6981
affected

6.0.6003.0 before 6.0.6003.22668
affected

6.0.6003.0 before 6.0.6003.22668
affected

6.0.6003.0 before 6.0.6003.22668
affected

6.1.7601.0 before 6.1.7601.27117
affected

6.1.7601.0 before 6.1.7601.27117
affected

6.2.9200.0 before 6.2.9200.24868
affected

6.2.9200.0 before 6.2.9200.24868
affected

6.3.9600.0 before 6.3.9600.21972
affected

6.3.9600.0 before 6.3.9600.21972
affected

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30020 (Windows Cryptographic Services Remote Code Execution Vulnerability) vendor-advisory

cve.org (CVE-2024-30020)

nvd.nist.gov (CVE-2024-30020)

Download JSON