First published: Tue Feb 13 2024(Updated: )
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Windows 10 | =1809 | |
Microsoft Windows 10 | =21H2 | |
Microsoft Windows Server 2016 | ||
Microsoft Windows 11 | =21H2 | |
Microsoft Windows Server 2019 | ||
Microsoft Windows 10 | =21H2 | |
Microsoft Windows Server 2012 R2 | ||
Microsoft Windows 10 | ||
Microsoft Windows 11 | =23H2 | |
Microsoft Windows 10 | =1607 | |
Microsoft Windows Server 2022 | ||
Microsoft Windows 10 | =1607 | |
Microsoft Windows 11 | =22H2 | |
Microsoft Windows 11 | =22H2 | |
Microsoft Windows Server 2016 | ||
Microsoft Windows Server 2019 | ||
Microsoft Windows 10 | =22H2 | |
Microsoft Windows Server 2022 | ||
Microsoft Windows Server 2012 R2 | ||
Microsoft Windows 10 | =22H2 | |
Microsoft Windows 11 | =21H2 | |
Microsoft Windows Server 2008 R2 | ||
Microsoft Windows 10 | =1809 | |
Microsoft Windows 10 | ||
Microsoft Windows 11 | =23H2 | |
Microsoft Windows 10 | =1809 | |
Microsoft Windows 10 | =22H2 | |
Microsoft Windows Server 2008 R2 | ||
Microsoft Windows 10 | =21H2 | |
Microsoft Windows Server 2012 x64 | ||
Microsoft Windows Server 2012 x64 | ||
Microsoft Windows Server 2022 23H2 | ||
Microsoft Windows Server 2008 Itanium | ||
Microsoft Windows Server 2008 Itanium | ||
Microsoft Windows Server 2008 Itanium | ||
Microsoft Windows Server 2008 Itanium | ||
Microsoft Windows 10 1507 | <10.0.10240.20469 | |
Microsoft Windows 10 1507 | <10.0.10240.20469 | |
Microsoft Windows 10 Version 1607 x86 | <10.0.14393.6709 | |
Microsoft Windows 10 Version 1607 x86 | <10.0.14393.6709 | |
Microsoft Windows 10 1809 | <10.0.17763.5458 | |
Microsoft Windows 10 1809 | <10.0.17763.5458 | |
Microsoft Windows 10 1809 | <=10.0.17763.5458 | |
Microsoft Windows 10 21h1 | <10.0.19044.4046 | |
Microsoft Windows 10 21h1 | <10.0.19044.4046 | |
Microsoft Windows 10 21h1 | <10.0.19044.4046 | |
Microsoft Windows 10 22h2 | <10.0.19045.4046 | |
Microsoft Windows 10 22h2 | <10.0.19045.4046 | |
Microsoft Windows 10 22h2 | <10.0.19045.4046 | |
Microsoft Windows 11 21h2 | <10.0.22000.2777 | |
Microsoft Windows 11 21h2 | <10.0.22000.2777 | |
Microsoft Windows 11 22h2 | <10.0.22621.3155 | |
Microsoft Windows 11 22h2 | <10.0.22621.3155 | |
Microsoft Windows 11 23h2 | <10.0.22631.3155 | |
Microsoft Windows 11 23h2 | <10.0.22631.3155 | |
Microsoft Windows Server 2008 Itanium | =sp2 | |
Microsoft Windows Server 2008 Itanium | =sp2 | |
Microsoft Windows Server 2008 Itanium | =r2-sp1 | |
Microsoft Windows Server 2012 x64 | ||
Microsoft Windows Server 2012 x64 | =r2 | |
Microsoft Windows Server 2016 | <10.0.14393.6709 | |
Microsoft Windows Server 2019 | <10.0.17763.5458 | |
Microsoft Windows Server 2022 | <10.0.20348.2322 | |
Microsoft Windows Server 2022 23H2 | <10.0.25398.709 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-21357 is classified as a critical vulnerability that allows for remote code execution.
To mitigate CVE-2024-21357, apply the relevant security update as recommended by Microsoft.
CVE-2024-21357 affects various versions of Windows 10, Windows 11, and Windows Server, including specific updates to each.
If exploited, CVE-2024-21357 allows an attacker to execute arbitrary code on the affected system, potentially compromising its security.
While a workaround is not recommended, disabling the Pragmatic General Multicast (PGM) feature may temporarily reduce the risk associated with CVE-2024-21357.