CVE-2024-30088
Microsoft Windows Kernel TOCTOU Race Condition Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
5Exploited in Wild
YesDecision
Descriptions
Windows Kernel Elevation of Privilege Vulnerability
Vulnerabilidad de elevaciĆ³n de privilegios del kernel de Windows
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
The specific flaw exists within the implementation of NtQueryInformationToken. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM.
Microsoft Windows Kernel contains a time-of-check to time-of-use (TOCTOU) race condition vulnerability that could allow for privilege escalation.
CVSS Scores
SSVC
- Decision:Act
Timeline
- 2024-03-22 CVE Reserved
- 2024-06-11 CVE Published
- 2024-06-24 First Exploit
- 2024-10-15 Exploited in Wild
- 2024-10-18 CVE Updated
- 2024-10-29 EPSS Updated
- 2024-11-05 KEV Due Date
CWE
- CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition
CAPEC
References (7)
URL | Tag | Source |
---|---|---|
- |
URL | Date | SRC |
---|---|---|
https://github.com/exploits-forsale/collateral-damage | 2024-07-22 | |
https://github.com/tykawaii98/CVE-2024-30088 | 2024-06-24 | |
https://github.com/Zombie-Kaiser/CVE-2024-30088-Windows-poc | 2024-07-05 | |
https://github.com/Admin9961/CVE-2024-30088 | 2024-07-27 | |
https://github.com/NextGenPentesters/CVE-2024-30088- | 2024-06-27 |
URL | Date | SRC |
---|---|---|
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30088 | 2024-06-21 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Microsoft Search vendor "Microsoft" | Windows 10 1507 Search vendor "Microsoft" for product "Windows 10 1507" | < 10.0.10240.20680 Search vendor "Microsoft" for product "Windows 10 1507" and version " < 10.0.10240.20680" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Windows 10 1607 Search vendor "Microsoft" for product "Windows 10 1607" | < 10.0.14393.7070 Search vendor "Microsoft" for product "Windows 10 1607" and version " < 10.0.14393.7070" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Windows 10 1809 Search vendor "Microsoft" for product "Windows 10 1809" | < 10.0.17763.5936 Search vendor "Microsoft" for product "Windows 10 1809" and version " < 10.0.17763.5936" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Windows 10 21h2 Search vendor "Microsoft" for product "Windows 10 21h2" | < 10.0.19044.4529 Search vendor "Microsoft" for product "Windows 10 21h2" and version " < 10.0.19044.4529" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Windows 10 22h2 Search vendor "Microsoft" for product "Windows 10 22h2" | < 10.0.19045.4529 Search vendor "Microsoft" for product "Windows 10 22h2" and version " < 10.0.19045.4529" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Windows 11 21h2 Search vendor "Microsoft" for product "Windows 11 21h2" | < 10.0.22000.3019 Search vendor "Microsoft" for product "Windows 11 21h2" and version " < 10.0.22000.3019" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Windows 11 22h2 Search vendor "Microsoft" for product "Windows 11 22h2" | < 10.0.22621.3737 Search vendor "Microsoft" for product "Windows 11 22h2" and version " < 10.0.22621.3737" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Windows 11 23h2 Search vendor "Microsoft" for product "Windows 11 23h2" | < 10.0.22631.3737 Search vendor "Microsoft" for product "Windows 11 23h2" and version " < 10.0.22631.3737" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Windows Server 2016 Search vendor "Microsoft" for product "Windows Server 2016" | < 10.0.14393.7070 Search vendor "Microsoft" for product "Windows Server 2016" and version " < 10.0.14393.7070" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Windows Server 2019 Search vendor "Microsoft" for product "Windows Server 2019" | < 10.0.17763.5936 Search vendor "Microsoft" for product "Windows Server 2019" and version " < 10.0.17763.5936" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Windows Server 2022 Search vendor "Microsoft" for product "Windows Server 2022" | < 10.0.20348.2522 Search vendor "Microsoft" for product "Windows Server 2022" and version " < 10.0.20348.2522" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Windows Server 2022 23h2 Search vendor "Microsoft" for product "Windows Server 2022 23h2" | < 10.0.25398.950 Search vendor "Microsoft" for product "Windows Server 2022 23h2" and version " < 10.0.25398.950" | - |
Affected
|