Main Vulnerability Database Exploits ID:10188 - Exploit for Input validation error in Windows Server and Windows - CVE-2023-24871

ID:10188 - Exploit for Input validation error in Windows Server and Windows - CVE-2023-24871

Published: July 5, 2024

Vulnerability identifier: #VU73550

Vulnerability risk: Medium

CVE-ID: CVE-2023-24871

CWE-ID: CWE-20

Exploitation vector: Adjecent network

Vulnerable software:
Windows Server
Windows

Link to public exploit:

https://github.com/ynwarcs/CVE-2023-24871

Vulnerability description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input in Windows Bluetooth Service. A remote attacker on the local network can pass specially crafted input to the application and perform a denial of service (DoS) attack.

Remediation

Install updates from vendor's website.

ID:10188 - Exploit for Input validation error in Windows Server and Windows - CVE-2023-24871

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human