CVE-2024-38178CISA KEV: Actively Exploited

Microsoft Windows Scripting Engine Memory Corruption Vulnerability

Published Aug 13, 2024·Updated Aug 13, 2024

Description

Microsoft Windows Scripting Engine contains a memory corruption vulnerability that allows unauthenticated attacker to initiate remote code execution via a specially crafted URL.

Public Exploits & PoCs1 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free