What's new

News Windows Wi-Fi Driver Remote Code Execution Vulnerability CVE-2024-30078

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

DJones

Very Senior Member
“Microsoft has confirmed a new and quite alarming Wi-Fi vulnerability in Windows, which has been rated 8.8 out of 10 in terms of severity using the Common Vulnerability Scoring System. The vulnerability, assigned as CVE-2024-30078, does not require an attacker to have physical access to the targeted computer, although physical proximity is needed.”


 
“Microsoft has confirmed a new and quite alarming Wi-Fi vulnerability in Windows, which has been rated 8.8 out of 10 in terms of severity using the Common Vulnerability Scoring System. The vulnerability, assigned as CVE-2024-30078, does not require an attacker to have physical access to the targeted computer, although physical proximity is needed.”


I am currently viewing a source that claims that a clever hacker has (already) provided a hack (for a $5000 price--negotiable) using already known vulnerabilities in (unpatched) enterprise and consumer-grade routers to make the claim of "...physical proximity is needed." not quite true.

This hack would make ANY (unpatched) windows device since VISTA connecting wirelessly to one of these infected wireless internet gateway device ANYWHERE in the world vulnerable.

That should rate this CVE more like a 9.8-10.0 (according to that source)
 

Discussion of CVE-2024-30078 begins at 15:43 into video (ends at 23:04)
 
Last edited:

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top