I’M UNDER A CYBER ATTACK

Alert

Alert 2024-39 Critical Vulnerability Windows Installer Privilege Escalation CVE-2024-38014

Affected Product(s):

  • Windows 10
  • Windows 11
  • Windows Server 2008
  • Windows Server 2012

Description:

A critical Zero-Day vulnerability, identified as CVE-2024-38014 (CVSS 7.8), has been recently discovered and patched, affecting Microsoft Windows MSI installers. This vulnerability allows for privilege escalation to SYSTEM by exploiting the repair functions of MSI installers.

Download PDF

WE’RE HERE TO HELP

Are you under a cyber attack?

Report it here

get the latest alerts in your inbox

Subscribe to our newsletter

We are a a group of highly trained professionals based in R&D with advanced technical knowledge and experience in the detection, analysis, containment, and recovery of security incidents.

We are a CSIRT, we are Cybolt.

I’M UNDER A CYBER ATTACK

Explore

Services

Stay updated

© 2024. Beacon Lab CSIRT, Privacy Policy

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.