CVE-2024-6768

Aug. 12, 2024, 7:15 p.m.

Tags

CWE-1284
df4dee71-de3a-4139-9588-11b62fe6c0ff
2024-08-12
CVE-2024-6768

Product(s) Impacted

Microsoft Windows

  • 10
  • 11
  • Server 2016
  • Server 2019
  • Server 2022

Description

A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated low-privilege user to cause a Blue Screen of Death via a forced call to the KeBugCheckEx function.

Weaknesses

CWE-1284
Improper Validation of Specified Quantity in Input

The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.

CWE ID: 1284

Date

Published: Aug. 12, 2024, 7:15 p.m.

Last Modified: Aug. 12, 2024, 7:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

df4dee71-de3a-4139-9588-11b62fe6c0ff

References

https://www.fortra.com/security/advisories/research/fr-2024-001
df4dee71-de3a-4139-9588-11b62fe6c0ff