CVE-2024-21338: Microsoft Windows Kernel Exposed IOCTL with Insufficient
Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability. Microsoft Windows Kernel contains an exposed IOCTL with insufficient access control vulnerability within the IOCTL (input and output control) dispatcher in appid.sys that allows a local attacker to achieve privilege escalation.
- CISA KEV-listed (remediation due 2024-03-25)
- used in ransomware campaigns
- EPSS 79.4% (99.1% percentile)