CVE-2024-43451CISA KEV: Actively Exploited

Microsoft Windows NTLMv2 Hash Disclosure Spoofing Vulnerability

Published Nov 12, 2024·Updated Nov 12, 2024

Description

Microsoft Windows contains an NTLMv2 hash spoofing vulnerability that could result in disclosing a user's NTLMv2 hash to an attacker via a file open operation. The attacker could then leverage this hash to impersonate that user.

Public Exploits & PoCs1 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free