Actively Exploited in the Wild
This vulnerability is being actively exploited in the wild.
Microsoft Management Console Security Feature Bypass Vulnerability
Vulnerability
A security feature bypass vulnerability has been identified in Microsoft Management Console (MMC). This vulnerability allows an unauthorized attacker to locally bypass essential security features, potentially leading to unauthorized access and manipulation of critical system components. The issue arises from improper neutralization, which can be exploited by convincing a user to open a specially crafted file.
Impact
Exploitation of this vulnerability can bypass security features in MMC, allowing for unauthorized access and manipulation of system components.
Remediation
Users can apply the official security updates from Microsoft to address this vulnerability. For Windows Server 2012 R2, Windows Server 2008 R2, and various versions of Windows 10 and Windows 11, the relevant security update can be downloaded via the Microsoft Update Catalog. Additionally, a temporary mitigation script is available that enforces MMC snap-in restrictions and ensures User Access Control (UAC) is enabled.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.