Cyber Resilience

CVE-2024-26160

Medium

Published: 12 March 2024

Published
12 March 2024
Modified
27 December 2024
KEV Added
Patch
CVSS Score v3.1 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS Score 0.3812 97.3th percentile
Risk Priority 34 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-26160 is a medium-severity Buffer Over-read (CWE-126) vulnerability in Microsoft Windows 11 22H2. Its CVSS base score is 5.5 (Medium).

Operationally, ranked in the top 2.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

Deeper analysis

CVE-2024-26160 is an information disclosure vulnerability affecting the Windows Cloud Files Mini Filter Driver. It carries a CVSS 3.1 base score of 5.5 and is associated with CWE-126. The flaw permits unauthorized exposure of sensitive data from kernel memory or related structures when the driver processes certain requests.

A local attacker with low privileges can exploit the issue without user interaction. Successful exploitation yields high confidentiality impact, allowing the attacker to read restricted information while leaving integrity and availability unaffected.

Microsoft has published an advisory for CVE-2024-26160 that details available patches and mitigation steps. The current EPSS score of 0.3812 matches its recorded peak, indicating moderate but stable exploitation interest since disclosure.

EU & UK References

Vulnerability details

Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

microsoft
windows 11 22h2
≤ 10.0.22621.3296
microsoft
windows 11 23h2
≤ 10.0.22631.3296
microsoft
windows server 2022 23h2
≤ 10.0.25398.763

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References