绿盟科技NSFOCUS安全漏洞系统

安全研究

安全漏洞

Microsoft Defender for Endpoint Protection权限提升漏洞（CVE-2024-21315）

发布日期：2024-02-13
更新日期：2024-02-14

受影响系统：

Microsoft Microsoft Defender for Endpoint for Windows Server 2022, 23H2 Edition (Ser
Microsoft Microsoft Defender for Endpoint for Windows Server 2022
Microsoft Microsoft Defender for Endpoint for Windows Server 2019 (Server Core inst
Microsoft Microsoft Defender for Endpoint for Windows Server 2019
Microsoft Microsoft Defender for Endpoint for Windows Server 2016 (Server Core inst
Microsoft Microsoft Defender for Endpoint for Windows Server 2016
Microsoft Microsoft Defender for Endpoint for Windows 11 Version 23H2 for x64-based
Microsoft Microsoft Defender for Endpoint for Windows 11 Version 23H2 for ARM64-base
Microsoft Microsoft Defender for Endpoint for Windows 11 Version 22H2 for x64-based
Microsoft Microsoft Defender for Endpoint for Windows 11 Version 22H2 for ARM64-base
Microsoft Microsoft Defender for Endpoint for Windows 11 version 21H2 for x64-based
Microsoft Microsoft Defender for Endpoint for Windows 11 version 21H2 for ARM64-base
Microsoft Microsoft Defender for Endpoint for Windows 10 Version 22H2 for x64-based
Microsoft Microsoft Defender for Endpoint for Windows 10 Version 22H2 for ARM64-base
Microsoft Microsoft Defender for Endpoint for Windows 10 Version 22H2 for 32-bit Sys
Microsoft Microsoft Defender for Endpoint for Windows 10 Version 21H2 for x64-based
Microsoft Microsoft Defender for Endpoint for Windows 10 Version 21H2 for ARM64-base
Microsoft Microsoft Defender for Endpoint for Windows 10 Version 21H2 for 32-bit Sys
Microsoft Microsoft Defender for Endpoint for Windows 10 Version 1809 for x64-based
Microsoft Microsoft Defender for Endpoint for Windows 10 Version 1809 for ARM64-base
Microsoft Microsoft Defender for Endpoint for Windows 10 Version 1809 for 32-bit Sys
Microsoft Microsoft Defender for Endpoint for Windows 10 Version 1607 for x64-based
Microsoft Microsoft Defender for Endpoint for Windows 10 Version 1607 for 32-bit Sys
Microsoft Microsoft Defender for Endpoint for Windows 10 for x64-based Systems
Microsoft Microsoft Defender for Endpoint for Windows 10 for 32-bit Systems

描述：

CVE(CAN) ID: CVE-2024-21315

Microsoft Defender for Endpoint Protection是企业终结点安全平台,旨在帮助企业网络阻止、检测、调查和响应高级威胁。
Microsoft Defender for Endpoint Protection存在权限提升漏洞，攻击者可利用该漏洞提升权限。

<**>

建议：

厂商补丁：

Microsoft
---------
目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2024-21315

浏览次数：630
严重程度：0（网友投票）

关于我们: 公司介绍; 公司荣誉; 公司新闻

联系我们: 公司总部; 分支机构; 海外机构

快速链接: 绿盟云; 绿盟威胁情报中心NTI; 技术博客