Cyber Resilience

CVE-2024-6769

HighLPE

Published: 26 September 2024

Published
26 September 2024
Modified
15 April 2026
KEV Added
Patch
CVSS Score v4 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.1595 94.9th percentile
Risk Priority 26 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-6769 is a high-severity Untrusted Search Path (CWE-426) vulnerability in Fortra (inferred from references). Its CVSS base score is 8.4 (High).

Operationally, ranked in the top 5.1% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

Deeper analysis

CVE-2024-6769 is a DLL hijacking vulnerability that arises from drive remapping combined with poisoning of the activation cache. It affects Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022. The flaw is tracked under CWE-426 and CWE-427 and carries a CVSS 4.0 score of 8.4, reflecting high impact on confidentiality, integrity, and availability when exploited locally.

An authenticated attacker who can run code in a medium-integrity process can leverage the issue to escalate to high integrity without triggering a User Account Control prompt. The attack requires local access and does not rely on user interaction or network vectors.

Public references point to a Fortra advisory and an accompanying GitHub repository that contain further technical details. The EPSS score has remained flat at 0.1595 with no material rise since disclosure.

EU & UK References

Vulnerability details

A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated attacker to elevate from a…

more

medium integrity process to a high integrity process without the intervention of a UAC prompt.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

Fortra
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References