THREATOPS
THREAT OPSCVEs › CVE-2024-38178

CVE-2024-38178 — Microsoft Windows Scripting Engine Memory Corruption Vulnerability

CISA KEVExploited: confirmedMicrosoft

Microsoft Windows Scripting Engine contains a memory corruption vulnerability that allows unauthenticated attacker to initiate remote code execution via a specially crafted URL.

Vulnerability details