Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2024-26248: Windows Kerberos Elevation of Privilege Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft Windows: CVE-2024-26248: Windows Kerberos Elevation of Privilege Vulnerability

Severity
9
CVSS
(AV:N/AC:M/Au:S/C:C/I:C/A:C)
Published
04/09/2024
Created
04/10/2024
Added
04/09/2024
Modified
04/30/2024

Description

Microsoft Windows: CVE-2024-26248: Windows Kerberos Elevation of Privilege Vulnerability

Solution(s)

  • microsoft-windows-windows_11-21h2-kb5036894
  • microsoft-windows-windows_11-22h2-kb5036893
  • microsoft-windows-windows_11-23h2-kb5036893
  • msft-kb5036892-333c5526-580c-42fd-902d-c1938ed28064
  • msft-kb5036892-701963a4-9265-47fa-b4e1-994ef948b5dc
  • msft-kb5036892-eda462b0-f7f5-41c3-aefa-0ed7590eccf0
  • msft-kb5036892-fd08be76-afae-48c4-9b0d-c44d7947abd6
  • msft-kb5036896-05cf9e78-c03e-43c6-b347-b4b7e744bea9
  • msft-kb5036896-20029fe7-5352-4455-9882-c372986717c7
  • msft-kb5036896-8855dfcc-3f43-46ab-a235-e71c0057b496
  • msft-kb5036899-69faac54-5812-4113-a88d-d52fd8acefd1
  • msft-kb5036899-d249ac11-9b4b-4ef8-94da-0a3ff3810a2e
  • msft-kb5036899-fa8351b7-409a-41b0-831a-98f01401749a
  • msft-kb5036909-1c09aabd-5134-4b57-9e50-454b6dd63ad0
  • msft-kb5036909-5e8f249e-e228-42fc-a10b-54a257aa1ec5
  • msft-kb5036910-0ae5674e-2216-4215-848a-85e15aeb83b1
  • msft-kb5036922-1b6c2afa-24b1-40e8-bc07-9cb3aaf3e493
  • msft-kb5036925-00991f12-1b3d-42d5-a07f-161cb6cf6fa3
  • msft-kb5036925-283b09c3-248a-46e9-b153-0748cc9e2a00
  • msft-kb5036950-1619240b-73e4-49a5-9412-39489e0e1cb4
  • msft-kb5036950-aeb7362d-f252-4046-a3e1-7ead5d01e242
  • msft-kb5036960-53116cdc-a174-4948-964c-75cc39c0f579
  • msft-kb5036969-d663d88e-8006-4eff-93d9-39e979c8407e

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;