Critical Windows kernel vulnerability easily escalates system privileges
Briefly

from Techzine Global1 month ago
CISA has warned about the active exploitation of Windows kernel vulnerability CVE-2024-35250, which allows local hackers to gain access to system privileges without user interaction.
Techzine Globalhttps://www.techzine.eu/news/security/127215/critical-windows-kernel-vulnerability-easily-escalates-system-privileges/
The DEVCORE Research Team identified that the root cause of this critical Windows vulnerability is the Microsoft Kernel Streaming Service, which can lead to a successful compromise of Windows 11 systems.
Techzine Globalhttps://www.techzine.eu/news/security/127215/critical-windows-kernel-vulnerability-easily-escalates-system-privileges/
CISA also issued a warning about the critical Adobe ColdFusion vulnerability CVE-2024-20767, which stems from poor access control, enabling unauthorized access to sensitive files.
Techzine Globalhttps://www.techzine.eu/news/security/127215/critical-windows-kernel-vulnerability-easily-escalates-system-privileges/
Despite Microsoft releasing a patch for the Windows vulnerability and providing proof-of-concept on GitHub, the risk remains high as the vulnerability is still actively exploited.
Techzine Globalhttps://www.techzine.eu/news/security/127215/critical-windows-kernel-vulnerability-easily-escalates-system-privileges/
Read at Techzine Global
#windows-vulnerability #cisa-warning #kernel-exploit #adobe-coldfusion #cybersecurity
[
|
]