What is the severity of CVE-2024-20681?

CVE-2024-20681 has a severity rating of Important, indicating a significant elevation of privilege risk.

How do I fix CVE-2024-20681?

To remediate CVE-2024-20681, ensure that you install the recommended security updates provided by Microsoft.

In which Microsoft products is CVE-2024-20681 found?

CVE-2024-20681 affects various versions of Windows 10, Windows 11, and Windows Server 2022.

How can I check if my system is affected by CVE-2024-20681?

You can verify if your system is affected by CVE-2024-20681 by checking the installed version of Windows against the vulnerability's affected software list.

What is the nature of the vulnerability in CVE-2024-20681?

CVE-2024-20681 is an elevation of privilege vulnerability that allows attackers to gain elevated permissions on affected systems.

Vulnerability/
CVE-2024-20681

high

7.8

CWE

416

EPSS

0.048%

9/1/2024

30/4/2025

CVE-2024-20681: Windows Subsystem for Linux Elevation of Privilege Vulnerability

First published: Tue Jan 09 2024(Updated: )

Windows Subsystem for Linux Elevation of Privilege Vulnerability

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Windows Server 2022 23H2		fix available externally
Windows 11	=23H2	fix available externally
Windows 11	=22H2	fix available externally
Windows 11	=22H2	fix available externally
Windows 11	=21H2	fix available externally
Windows 11	=21H2	fix available externally
Windows 11	=23H2	fix available externally
Microsoft Windows Server 2022		fix available externally
Microsoft Windows Server 2022		fix available externally
Microsoft Windows 10	<10.0.19044.3930
Microsoft Windows 10	<10.0.19045.3930
Windows 11	<10.0.22000.2713
Windows 11	<10.0.22000.2713
Windows 11	<10.0.22621.3007
Windows 11	<10.0.22621.3007
Windows 11	<10.0.22631.3007
Windows 11	<10.0.22631.3007
Microsoft Windows Server 2022
Microsoft Windows Server 2022
Windows 10	=22H2	fix available externally
Windows 10	=22H2	fix available externally
Windows 10	=22H2	fix available externally
Windows 10	=21H2	fix available externally
Windows 10	=21H2	fix available externally
Windows 10	=21H2	fix available externally

Remedy

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20681

Never miss a vulnerability like this again

Reference Links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20681 (Advisory)

Frequently Asked Questions

What is the severity of CVE-2024-20681?
CVE-2024-20681 has a severity rating of Important, indicating a significant elevation of privilege risk.
How do I fix CVE-2024-20681?
To remediate CVE-2024-20681, ensure that you install the recommended security updates provided by Microsoft.
In which Microsoft products is CVE-2024-20681 found?
CVE-2024-20681 affects various versions of Windows 10, Windows 11, and Windows Server 2022.
How can I check if my system is affected by CVE-2024-20681?
You can verify if your system is affected by CVE-2024-20681 by checking the installed version of Windows against the vulnerability's affected software list.
What is the nature of the vulnerability in CVE-2024-20681?
CVE-2024-20681 is an elevation of privilege vulnerability that allows attackers to gain elevated permissions on affected systems.

collector/msrc
source/Microsoft
collector/msrc-cve
agent/type
agent/first-publish-date
agent/title
agent/remedy
agent/severity
agent/author
agent/references
agent/description
agent/event
collector/epss-latest
source/FIRST
agent/epss
agent/weakness
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-api
source/NVD
agent/softwarecombine
agent/tags
vendor/microsoft
canonical/microsoft windows server 2022 23h2
canonical/windows 11
version/windows 11/23h2
version/windows 11/22h2
version/windows 11/21h2
canonical/microsoft windows server 2022
canonical/microsoft windows 10
canonical/windows 10
version/windows 10/22h2
version/windows 10/21h2