CVE-2024-43594 · Microsoft System Center Elevation of Privilege Vulnerability

What privileges could be gained by an attacker who successfully exploited the vulnerability? An attacker who successfully exploited this vulnerability could gain administrator privileges.

According to the CVSS metric, privileges required is low (PR:L). What does that mean for this vulnerability? Successful exploitation of this vulnerability requires an attacker to have access to the location where the target file will be run. They would then need to plant a specific file that would be used as part of the exploitation.

According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do? Successful exploitation requires the victim to install an affected version of the product which would trigger the vulnerability.

What Microsoft System Center Products are affected by this vulnerability? This vulnerability affects all products under Microsoft System Center. A full list can be found in the following product documentation: Microsoft System Center documentation

What actions do customers need to take to protect themselves from this vulnerability? Only customers who re-use existing System Center installer files (.exe) files to deploy new instances in their environment are affected by this vulnerability. Customers performing installations in this manner must delete the existing installer setup files (.exe) and then download the latest version of their System Center product linked in the Security Updates table of this CVE to mitigate the vulnerability. Customers who download new versions of the setup files (.exe) for new deployments are not affected and do not need to perform an action to mitigate the vulnerability.