CVE-2024-6768

Summary

A Denial of Service in CLFS.sys in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated low-privilege user to cause a Blue Screen of Death via a forced call to the KeBugCheckEx function.

Affected Software

VendorProductVersion RangeStatus
MicrosoftWindows 1010.0.0affected
MicrosoftWindows 1110.0.0affected
MicrosoftWindows Server 201610.0.0affected
MicrosoftWindows Server 201910.0.0affected
MicrosoftWindows Server 202210.0.0affected

Weaknesses

  • CWE-1284: CWE-1284 Improper Validation of Specified Quantity in Input

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References