CISA Known Exploited Vulnerability (KEV)
Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability
March 4, 2024
March 25, 2024
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Description
Windows Kernel Elevation of Privilege Vulnerability
References
Weakness Enumeration
CWE-ID | CWE Name |
---|---|
CWE-822 |
Untrusted Pointer Dereference |