CVE-2024-6769

MEDIUM

Microsoft Windows <2022 - Privilege Escalation

Title source: llm

Description

A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated attacker to elevate from a medium integrity process to a high integrity process without the intervention of a UAC prompt.

Exploits (1)

nomisec WORKING POC 79 stars
by fortra · poc
https://github.com/fortra/CVE-2024-6769

References (2)

Scores

CVSS v3 6.7
EPSS 0.1595
EPSS Percentile 94.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-427 CWE-426
Status draft

Timeline

Published Sep 26, 2024
Tracked Since Feb 18, 2026