Home

Description

Windows Cryptographic Services Information Disclosure Vulnerability

PUBLISHED Reserved 2024-03-22 | Published 2024-06-11 | Updated 2025-07-16 | Assigner microsoft




MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Problem types

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

Product status

10.0.17763.0 (custom) before 10.0.17763.5936
affected

10.0.0 (custom) before 10.0.17763.5936
affected

10.0.17763.0 (custom) before 10.0.17763.5936
affected

10.0.17763.0 (custom) before 10.0.17763.5936
affected

10.0.20348.0 (custom) before 10.0.20348.2527
affected

10.0.22000.0 (custom) before 10.0.22000.3019
affected

10.0.19044.0 (custom) before 10.0.19044.4529
affected

10.0.22621.0 (custom) before 10.0.22621.3737
affected

10.0.19045.0 (custom) before 10.0.19045.4529
affected

10.0.22631.0 (custom) before 10.0.22631.3737
affected

10.0.22631.0 (custom) before 10.0.22631.3737
affected

10.0.25398.0 (custom) before 10.0.25398.950
affected

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30096 (Windows Cryptographic Services Information Disclosure Vulnerability) vendor-advisory

msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30096 (Windows Cryptographic Services Information Disclosure Vulnerability) vendor-advisory

cve.org (CVE-2024-30096)

nvd.nist.gov (CVE-2024-30096)

Download JSON