Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Microsoft | Windows Server 2022 | affected |
|
||||||
| Microsoft | Windows 11 version 21H2 | affected |
|
||||||
| Microsoft | Windows 10 Version 21H2 | affected |
|
||||||
| Microsoft | Windows 11 version 22H2 | affected |
|
||||||
| Microsoft | Windows 10 Version 22H2 | affected |
|
||||||
| Microsoft | Windows 11 version 22H3 | affected |
|
||||||
| Microsoft | Windows 11 Version 23H2 | affected |
|
||||||
| Microsoft | Windows Server 2022, 23H2 Edition (Server Core installation) | affected |
|
Configuration 1 [-]
|
No data.
No data available yet.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2024-23446 | Windows Composite Image File System (CimFS) Elevation of Privilege Vulnerability |
Tue, 31 Dec 2024 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| CPEs | cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.4170:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.4170:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.4170:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.4170:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.4170:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.2836:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.2836:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.3296:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.3296:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_11_23H2:10.0.22631.3296:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_11_23H2:10.0.22631.3296:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.2333:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.2340:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_server_23h2:10.0.25398.763:*:*:*:*:*:*:* |
|
| Vendors & Products |
Microsoft windows 10 21h2
Microsoft windows 10 22h2 Microsoft windows 11 21h2 Microsoft windows 11 22h2 Microsoft windows 11 23h2 Microsoft windows Server 23h2 |
Fri, 27 Dec 2024 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Microsoft windows 10 21h2
Microsoft windows 10 22h2 Microsoft windows 11 21h2 Microsoft windows 11 22h2 Microsoft windows 11 23h2 Microsoft windows Server 2022 23h2 |
|
| Weaknesses | NVD-CWE-noinfo | |
| CPEs | cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:* |
|
| Vendors & Products |
Microsoft windows 10 21h2
Microsoft windows 10 22h2 Microsoft windows 11 21h2 Microsoft windows 11 22h2 Microsoft windows 11 23h2 Microsoft windows Server 2022 23h2 |
MITRE
Status: PUBLISHED
Assigner: microsoft
Published:
Updated: 2025-05-03T00:47:05.905Z
Reserved: 2024-02-14T22:23:54.097Z
Link: CVE-2024-26170
Vulnrichment
Updated: 2024-08-01T23:59:32.576Z
NVD
Status : Analyzed
Published: 2024-03-12T17:15:56.330
Modified: 2024-12-27T17:54:12.860
Link: CVE-2024-26170
Redhat
No data.
OpenCVE Enrichment
No data.