CVE-2024-38074
Published: 09 July 2024
Summary
CVE-2024-38074 is a critical-severity Wrap or Wraparound (CWE-191) vulnerability in Microsoft Windows Server 2012. Its CVSS base score is 9.8 (Critical).
Operationally, ranked in the top 7.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
Deeper analysis
Windows Remote Desktop Licensing Service contains a remote code execution vulnerability tracked as CVE-2024-38074. The flaw received a CVSS 3.1 score of 9.8 and is associated with CWE-191. It affects the licensing service component responsible for managing Remote Desktop client access licenses on Windows systems.
An unauthenticated attacker can exploit the issue over the network without user interaction. Successful exploitation grants the ability to execute arbitrary code with the privileges of the service, resulting in full impact to confidentiality, integrity, and availability on the target host.
Microsoft has published guidance for the vulnerability through its Security Response Center at the listed advisory URLs, directing administrators to available patches and configuration updates. The associated EPSS score has remained near 0.09 with only minor fluctuation since disclosure and does not indicate emerging exploitation activity.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-37769
Vulnerability details
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.