Windows Kerberos Elevation of Privilege Vulnerability CVE-2024-38239 Security Vulnerability Released: Sep 10, 2024 Assigning CNA: Microsoft Impact: Elevation of Privilege Max Severity: Important Weakness: CWE-1390: Weak Authentication CVSS Source: Microsoft CVSS:3.1 7.2 / 6.3 Temporal score metrics (3): Exploit Code Example: Description: This vulnerability allows an attacker to elevate privileges on a Windows system by exploiting a flaw in the Kerberos authentication protocol. The attacker can use this vulnerability to gain access to sensitive information or control the system. Solution: Microsoft has released a security update to address this vulnerability. Users are advised to apply the update as soon as possible to mitigate the risk. Acknowledgements: Acknowledgements for the discovery of this vulnerability are provided to the researcher who reported it. References: Microsoft Security Advisory Microsoft Knowledge Base Article --- This information is based on the screenshot provided and the details visible on the webpage.