Exploitation Summary
CVE-2024-38112 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added July 9, 2024. EIP tracks 1 public exploit from researchers including BunBunCodes.
AI-analyzed exploit summary This repository contains a student project report discussing CVE-2024-38112 and a related attack by the ATP group Void Banshee. It includes policy recommendations and security planning for a server room but lacks technical exploit details or functional code.
Description
Windows MSHTML Platform Spoofing Vulnerability
Exploits (1)
This repository contains a student project report discussing CVE-2024-38112 and a related attack by the ATP group Void Banshee. It includes policy recommendations and security planning for a server room but lacks technical exploit details or functional code.
References (2)
Scores
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H