CVE-2024-43491: Microsoft Windows Update Use-After-Free Vulnerability
First published: Tue Sep 10 2024(Updated: )
<p>Microsoft is aware of a vulnerability in Servicing Stack that has rolled back the fixes for some vulnerabilities affecting Optional Components on Windows 10, version 1507 (initial version released July 2015). This means that an attacker could exploit these previously mitigated vulnerabilities on Windows 10, version 1507 (Windows 10 Enterprise 2015 LTSB and Windows 10 IoT Enterprise 2015 LTSB) systems that have installed the Windows security update released on March 12, 2024—KB5035858 (OS Build 10240.20526) or other updates released until August 2024. All later versions of Windows 10 are not impacted by this vulnerability.</p> <p>This servicing stack vulnerability is addressed by installing the September 2024 Servicing stack update (SSU KB5043936) AND the September 2024 Windows security update (KB5043083), in that order.</p> <p>Note: Windows 10, version 1507 reached the end of support (EOS) on May 9, 2017 for devices running the Pro, Home, Enterprise, Education, and Enterprise IoT editions. Only <a href="https://learn.microsoft.com/en-us/lifecycle/products/windows-10-2015-ltsb">Windows 10 Enterprise 2015 LTSB</a> and <a href="https://learn.microsoft.com/en-us/lifecycle/products/windows-10-iot-enterprise-ltsb-2015">Windows 10 IoT Enterprise 2015 LTSB</a> editions are still under support.</p>
Credit: secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows 10 | ||
| Microsoft Windows 10 | ||
| Microsoft Windows | ||
| Microsoft Windows 10 | <10.0.10240.20766 | |
| Microsoft Windows 10 | <=10.0.10240.20766 |
Remedy
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-43491?
CVE-2024-43491 is considered a critical vulnerability due to its ability to allow remote exploitation of previously mitigated vulnerabilities.
How do I fix CVE-2024-43491?
To fix CVE-2024-43491, ensure that your Windows 10 system is updated with the latest patches provided by Microsoft, particularly KB5043083.
What versions of Windows are affected by CVE-2024-43491?
CVE-2024-43491 specifically affects Windows 10, version 1507, which was initially released in July 2015.
Can CVE-2024-43491 be exploited by attackers?
Yes, CVE-2024-43491 can be exploited by attackers due to the rollback of previously applied fixes for vulnerabilities in Optional Components.
Is there a known workaround for CVE-2024-43491?
There are no official workarounds for CVE-2024-43491, and the recommended solution is to apply available updates immediately.
- agent/type
- agent/first-publish-date
- agent/author
- exploited/true
- collector/msrc
- source/Microsoft
- agent/software-canonical-lookup
- agent/references
- agent/remedy
- agent/softwarecombine
- collector/cisa-known-exploited
- source/CISA
- agent/description
- agent/title
- collector/msrc-cve
- agent/severity
- agent/weakness
- collector/the-register
- source/The Register
- alias/CVE-2024-43491
- alias/CVE-2024-38216
- alias/CVE-2024-38220
- alias/CVE-2024-38194
- alias/CVE-2024-38188
- alias/CVE-2024-43470
- alias/CVE-2024-43469
- alias/CVE-2024-38018
- alias/CVE-2024-43464
- alias/CVE-2024-38119
- alias/CVE-2024-24968
- alias/CVE-2024-23984
- alias/CVE-2024-41730
- alias/CVE-2024-33003
- alias/CVE-2024-7889
- alias/CVE-2024-7890
- alias/CVE-2024-8190
- agent/event
- agent/trending
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-cve
- vendor/microsoft
- canonical/microsoft windows 10
- canonical/microsoft windows
- version/microsoft windows 10/10.0.10240.20766