CVE-2024-38143

MEDIUM

Windows WLAN AutoConfig Service - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-38143. PoCs published by redr0nin.

AI-analyzed exploit summary The repository discusses CVE-2024-38143, a Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability, which is a regression of CVE-2021-28316. It references an existing PoC and confirms that the vulnerability remains unpatched, allowing escalation to NT AUTHORITY\SYSTEM.

Description

Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability

Exploits (1)

nomisec WRITEUP 24 stars

by redr0nin · poc

https://github.com/redr0nin/CVE-2024-38143

View Code ZIP pw:eip

The repository discusses CVE-2024-38143, a Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability, which is a regression of CVE-2021-28316. It references an existing PoC and confirms that the vulnerability remains unpatched, allowing escalation to NT AUTHORITY\SYSTEM.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Windows WLAN AutoConfig Service

No auth needed

Prerequisites: Physical access to a vulnerable Windows system · Unpatched version of Windows

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Patch, Vendor Advisory vendor-advisory

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38143

Scores

CVSS v3 4.2

EPSS 0.0170

EPSS Percentile 74.2%

Attack Vector PHYSICAL

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-306

Status published

Products (13)

microsoft/windows_10_1507 < 10.0.10240.20751

microsoft/windows_10_1607 < 10.0.14393.7259

microsoft/windows_10_1809 < 10.0.17763.6189

microsoft/windows_10_21h2 < 10.0.19044.4780

microsoft/windows_10_22h2 < 10.0.19045.4780

microsoft/windows_11_21h2 < 10.0.22000.3147

microsoft/windows_11_22h2 < 10.0.22621.4037

microsoft/windows_11_23h2 < 10.0.22631.4037

microsoft/windows_11_24h2 < 10.0.26100.1457

microsoft/windows_server_2016 < 10.0.14393.7259

... and 3 more

Published Aug 13, 2024

Tracked Since Feb 18, 2026