Detections
Analytics
KB5046665: Windows 10 LTS 1507 Security Update (November 2024)
high Nessus Plugin ID 210863
Synopsis
The remote Windows host is affected by multiple vulnerabilities.Description
The remote Windows host is missing security update 5046665. It is, therefore, affected by multiple vulnerabilities- Windows Task Scheduler Elevation of Privilege Vulnerability (CVE-2024-49039)
- Windows Telephony Service Remote Code Execution Vulnerability (CVE-2024-43620, CVE-2024-43621, CVE-2024-43622, CVE-2024-43627, CVE-2024-43628, CVE-2024-43635)
- Windows NT OS Kernel Elevation of Privilege Vulnerability (CVE-2024-43623)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Apply Security Update 5046665See Also
Plugin Details
Severity: High
ID: 210863
File Name: smb_nt_ms24_nov_5046665.nasl
Version: 1.1
Type: local
Agent: windows
Family: Windows : Microsoft Bulletins
Published: 11/12/2024
Updated: 11/12/2024
Supported Sensors: Nessus
Risk Information
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2024-43635
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 7.7
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
CVSS Score Source: CVE-2024-49039
Vulnerability Information
CPE: cpe:/o:microsoft:windows_10_1507
Required KB Items: SMB/MS_Bulletin_Checks/Possible
Exploit Ease: No known exploits are available
Patch Publication Date: 11/12/2024
Vulnerability Publication Date: 11/12/2024
Reference Information
CVE: CVE-2024-38203, CVE-2024-43449, CVE-2024-43451, CVE-2024-43620, CVE-2024-43621, CVE-2024-43622, CVE-2024-43623, CVE-2024-43626, CVE-2024-43627, CVE-2024-43628, CVE-2024-43634, CVE-2024-43635, CVE-2024-43636, CVE-2024-43637, CVE-2024-43638, CVE-2024-43641, CVE-2024-43643, CVE-2024-43644, CVE-2024-43645, CVE-2024-49039, CVE-2024-49046
MSFT: MS24-5046665
MSKB: 5046665