CVE-2024-6768

Aug. 12, 2024, 7:15 p.m.

None
No Score

Description

A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated low-privilege user to cause a Blue Screen of Death via a forced call to the KeBugCheckEx function.

Product(s) Impacted

Product Versions
Microsoft Windows
  • ['10', '11', 'Server 2016', 'Server 2019', 'Server 2022']

Weaknesses

Common security weaknesses mapped to this vulnerability.

CWE-1284
Improper Validation of Specified Quantity in Input
The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.

References

https://www.fortra.com/security/advisories/research/fr-2024-001

Tags

CWE-1284
df4dee71-de3a-4139-9588-11b62fe6c0ff
2024-08-12
CVE-2024-6768

Timeline

Published: Aug. 12, 2024, 7:15 p.m.
Last Modified: Aug. 12, 2024, 7:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

df4dee71-de3a-4139-9588-11b62fe6c0ff

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.