CVE-2024-43451

⚠ KEVEPSS 90.3%

Microsoft Windows NTLMv2 Hash Disclosure Spoofing Vulnerability

Added to CISA KEV: 11/12/2024

Description

Microsoft Windows contains an NTLMv2 hash spoofing vulnerability that could result in disclosing a user's NTLMv2 hash to an attacker via a file open operation. The attacker could then leverage this hash to impersonate that user.

Affected packages (0)

No package mapping in OSV.