CVE-2024-26160
Published: 12 March 2024
Summary
CVE-2024-26160 is a medium-severity Buffer Over-read (CWE-126) vulnerability in Microsoft Windows 11 22H2. Its CVSS base score is 5.5 (Medium).
Operationally, ranked in the top 2.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
Deeper analysis
CVE-2024-26160 is an information disclosure vulnerability affecting the Windows Cloud Files Mini Filter Driver. It carries a CVSS 3.1 base score of 5.5 and is associated with CWE-126. The flaw permits unauthorized exposure of sensitive data from kernel memory or related structures when the driver processes certain requests.
A local attacker with low privileges can exploit the issue without user interaction. Successful exploitation yields high confidentiality impact, allowing the attacker to read restricted information while leaving integrity and availability unaffected.
Microsoft has published an advisory for CVE-2024-26160 that details available patches and mitigation steps. The current EPSS score of 0.3812 matches its recorded peak, indicating moderate but stable exploitation interest since disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-23437
Vulnerability details
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.