Menu
What's new
By:
Filters Better Search

News Windows Wi-Fi Driver Remote Code Execution Vulnerability CVE-2024-30078

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

D

DJones

Very Senior Member
“Microsoft has confirmed a new and quite alarming Wi-Fi vulnerability in Windows, which has been rated 8.8 out of 10 in terms of severity using the Common Vulnerability Scoring System. The vulnerability, assigned as CVE-2024-30078, does not require an attacker to have physical access to the targeted computer, although physical proximity is needed.”


www.forbes.com

New Wi-Fi Takeover Attack—All Windows Users Warned To Update Now

Microsoft has released a critical security update for users of all supported Windows versions as a new Wi-Fi compromise requiring no authentication has been confirmed.
www.forbes.com www.forbes.com
 
DJones said:
“Microsoft has confirmed a new and quite alarming Wi-Fi vulnerability in Windows, which has been rated 8.8 out of 10 in terms of severity using the Common Vulnerability Scoring System. The vulnerability, assigned as CVE-2024-30078, does not require an attacker to have physical access to the targeted computer, although physical proximity is needed.”


www.forbes.com

New Wi-Fi Takeover Attack—All Windows Users Warned To Update Now

Microsoft has released a critical security update for users of all supported Windows versions as a new Wi-Fi compromise requiring no authentication has been confirmed.
www.forbes.com www.forbes.com
Click to expand...
I am currently viewing a source that claims that a clever hacker has (already) provided a hack (for a $5000 price--negotiable) using already known vulnerabilities in (unpatched) enterprise and consumer-grade routers to make the claim of "...physical proximity is needed." not quite true.

This hack would make ANY (unpatched) windows device since VISTA connecting wirelessly to one of these infected wireless internet gateway device ANYWHERE in the world vulnerable.

That should rate this CVE more like a 9.8-10.0 (according to that source)
 

Discussion of CVE-2024-30078 begins at 15:43 into video (ends at 23:04)
 
Last edited:
You must log in or register to reply here.
Similar threads
Thread starter Title Forum Replies Date
S Is there good VPN tunnel plain DNS filtering software for Windows? General Network Security 2
PR3MIUM News Windows build 2024 and Ai Recall - Security Risk General Network Security 2
bbunge Microsoft plans to lock down Windows DNS - ZTDNS General Network Security 5
P News Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack General Network Security 15

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 943 (members: 26, guests: 917)
Top