CVE-2024-21324: Microsoft Defender for IoT Elevation of Privilege Vulnerability

Overview

Severity

High (CVSS 7.2)

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Category

Elevation of Privilege

Exploit Status

Not Exploited

Exploitation Likelihood

Less Likely

Patch Tuesday

2024-Apr

Released

2024-04-09

Last Updated

2024-04-11

EPSS Score

7.13% (percentile: 91.5%)

FAQ

What actions do customers need to take to protect themselves from this vulnerability? Customers need to update their Defender for IoT software to version 24.1.3 or above. For more information, see OT monitoring software versions. According to the CVSS metric, privileges required is high (PR:H). What does that mean for this vulnerability? An attacker would be required to have shell access to the server. What privileges could be gained by an attacker who successfully exploited the vulnerability? An attacker who successfully exploited this vulnerability could gain access to the credentials of other users on the system.

Affected Products (1)

System Center

• Microsoft Defender for IoT

Security Updates (1)

• Release Notes

Acknowledgments

<a href="https://www.siemens-energy.com/">Siemens Energy</a>

Revision History

• 2024-04-09: Information published.
• 2024-04-11: Added an FAQ. This is an information change only.