Zero-Click Vulnerability CVE-2024-49112 Disclosed in Windows
/ 1 min read
🕵️♂️ Critical zero-click vulnerability in Windows LDAP service poses severe risks. SafeBreach Labs has identified a zero-click vulnerability in the Windows Lightweight Directory Access Protocol (LDAP) service, labeled “LDAP Nightmare” and tracked as CVE-2024-49112, with a CVSS score of 9.8. This Remote Code Execution (RCE) vulnerability can crash unpatched Windows Servers, including Active Directory Domain Controllers, and allows attackers to gain control over domain resources. First disclosed on December 10, 2024, during Microsoft’s Patch Tuesday, the exploit requires no authentication and can be executed via crafted LDAP queries. SafeBreach has released a proof-of-concept tool to test for this vulnerability, urging organizations to apply Microsoft’s patch immediately and monitor for suspicious activity to mitigate risks.
