What is the severity of CVE-2024-49019?

The severity of CVE-2024-49019 is classified as an elevation of privilege vulnerability affecting Active Directory Certificate Services.

How do I fix CVE-2024-49019?

To fix CVE-2024-49019, apply the relevant security updates from Microsoft for your affected version of Windows Server.

Which Microsoft products are affected by CVE-2024-49019?

CVE-2024-49019 affects multiple versions of Microsoft Windows Server, including 2008 R2, 2012, 2016, 2019, 2022, 2025, and their respective Server Core installations.

Can CVE-2024-49019 lead to unauthorized access?

Yes, CVE-2024-49019 can allow attackers to elevate privileges, potentially leading to unauthorized access to sensitive areas of the system.

Is there a workaround for CVE-2024-49019?

There are no official workarounds for CVE-2024-49019, the best mitigation is to apply the provided security updates immediately.

Vulnerability/
CVE-2024-49019

high

7.8

CWE

1390

12/11/2024

30/1/2025

CVE-2024-49019: Active Directory Certificate Services Elevation of Privilege Vulnerability

First published: Tue Nov 12 2024(Updated: )

Active Directory Certificate Services Elevation of Privilege Vulnerability

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Windows Server 2016		fix available externally
Microsoft Windows Server 2008 R2		fix available externally fix available externally
Microsoft Windows Server 2016		fix available externally
Microsoft Windows Server 2008 R2		fix available externally fix available externally
Microsoft Windows Server 2019		fix available externally
Microsoft Windows Server 2012 R2		fix available externally
Microsoft Windows Server 2012 R2		fix available externally
Microsoft Windows Server 2019		fix available externally
Microsoft Windows Server 2025		fix available externally fix available externally
Microsoft Windows Server 2025		fix available externally fix available externally
Microsoft Windows Server 2022		fix available externally fix available externally
Microsoft Windows Server 2022		fix available externally fix available externally
Microsoft Windows Server 2012 x64		fix available externally
Microsoft Windows Server 2012 x64		fix available externally
Microsoft Windows Server 2022 23H2		fix available externally
Microsoft Windows Server 2008 Itanium		fix available externally fix available externally
Microsoft Windows Server 2008 Itanium		fix available externally fix available externally
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=r2-sp1
Microsoft Windows Server 2012 x64
Microsoft Windows Server 2012 x64	=r2
Microsoft Windows Server 2016	<10.0.14393.7515
Microsoft Windows Server 2019	<10.0.17763.6532
Microsoft Windows Server 2022	<10.0.20348.2849
Microsoft Windows Server 2022 23H2	<10.0.25398.1251
Microsoft Windows Server 2025	<10.0.26100.2314
Microsoft Windows Server 2008 Itanium		fix available externally fix available externally
Microsoft Windows Server 2008 Itanium		fix available externally fix available externally

Remedy

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49019

Never miss a vulnerability like this again

Reference Links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49019 (Advisory)

Frequently Asked Questions

What is the severity of CVE-2024-49019?
The severity of CVE-2024-49019 is classified as an elevation of privilege vulnerability affecting Active Directory Certificate Services.
How do I fix CVE-2024-49019?
To fix CVE-2024-49019, apply the relevant security updates from Microsoft for your affected version of Windows Server.
Which Microsoft products are affected by CVE-2024-49019?
CVE-2024-49019 affects multiple versions of Microsoft Windows Server, including 2008 R2, 2012, 2016, 2019, 2022, 2025, and their respective Server Core installations.
Can CVE-2024-49019 lead to unauthorized access?
Yes, CVE-2024-49019 can allow attackers to elevate privileges, potentially leading to unauthorized access to sensitive areas of the system.
Is there a workaround for CVE-2024-49019?
There are no official workarounds for CVE-2024-49019, the best mitigation is to apply the provided security updates immediately.

collector/msrc
source/Microsoft
agent/software-canonical-lookup
agent/references
agent/first-publish-date
agent/type
agent/description
agent/software-canonical-lookup-request
collector/msrc-cve
agent/title
agent/severity
agent/author
agent/weakness
agent/event
agent/remedy
agent/trending
agent/last-modified-date
agent/source
agent/softwarecombine
agent/tags
collector/nvd-api
source/NVD
collector/mitre-cve
source/MITRE
vendor/microsoft
canonical/microsoft windows server 2016
canonical/microsoft windows server 2008 r2
canonical/microsoft windows server 2019
canonical/microsoft windows server 2012 r2
canonical/microsoft windows server 2025
canonical/microsoft windows server 2022
canonical/microsoft windows server 2012 x64
canonical/microsoft windows server 2022 23h2
canonical/microsoft windows server 2008 itanium
version/microsoft windows server 2008 itanium/sp2
version/microsoft windows server 2008 itanium/r2-sp1
version/microsoft windows server 2012 x64/r2

Frequently Asked Questions

What is the severity of CVE-2024-49019?
The severity of CVE-2024-49019 is classified as an elevation of privilege vulnerability affecting Active Directory Certificate Services.
How do I fix CVE-2024-49019?
To fix CVE-2024-49019, apply the relevant security updates from Microsoft for your affected version of Windows Server.
Which Microsoft products are affected by CVE-2024-49019?
CVE-2024-49019 affects multiple versions of Microsoft Windows Server, including 2008 R2, 2012, 2016, 2019, 2022, 2025, and their respective Server Core installations.
Can CVE-2024-49019 lead to unauthorized access?
Yes, CVE-2024-49019 can allow attackers to elevate privileges, potentially leading to unauthorized access to sensitive areas of the system.
Is there a workaround for CVE-2024-49019?
There are no official workarounds for CVE-2024-49019, the best mitigation is to apply the provided security updates immediately.

CVE-2024-49019: Active Directory Certificate Services Elevation of Privilege Vulnerability

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-49019?

How do I fix CVE-2024-49019?

Which Microsoft products are affected by CVE-2024-49019?

Can CVE-2024-49019 lead to unauthorized access?

Is there a workaround for CVE-2024-49019?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2024-49019?

How do I fix CVE-2024-49019?

Which Microsoft products are affected by CVE-2024-49019?

Can CVE-2024-49019 lead to unauthorized access?

Is there a workaround for CVE-2024-49019?