CVE-2024-21412

ENISA EUVD: EUVD-2024-19121 ↗

Exploited in the Wild ✓ Confirmed 0-Day

Triaged: March 5, 2026 15 articles Published: 2024-02-13

VulnLookup ↗ NVD ↗ EUVD ↗ MITRE ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-23

93.78%

probability

This CVE has a 93.78% probability of being exploited in the next 30 days.

0% Top 99.9th percentile of all CVEs 100%

CVSS v3.1

Source: VulnerabilityLookup (CIRCL)

8.1

HIGH

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Temporal

Exploit Code Maturity

Functional

Remediation Level

Official Fix

Report Confidence

Confirmed

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N/E:F/RL:O/RC:C

Description

NVD

Internet Shortcut Files Security Feature Bypass Vulnerability

Affected Products

Microsoft

Windows 11 version 21H2

10.0.0

Microsoft

Windows 10 Version 1809

10.0.0

Microsoft

Windows 10 Version 21H2

10.0.19043.0

Microsoft

Windows Server 2022

10.0.20348.0

Microsoft

Windows 11 version 22H2

10.0.22621.0

microsoft

windows 10 1809

microsoft

windows 10 21h2

microsoft

windows 10 22h2

microsoft

windows 11 21h2

microsoft

windows 11 22h2

Microsoft

Windows 10 Version 22H2

10.0.19045.0 <10.0.19045.4046

Microsoft

Windows 11 version 22H3

10.0.22631.0 <10.0.22631.3155

Microsoft

Windows 11 version 22H2

10.0.22621.0 <10.0.22621.3155

Microsoft

Windows Server 2022

10.0.20348.0 <10.0.20348.2322

Microsoft

Windows Server 2019

10.0.17763.0 <10.0.17763.5458

Microsoft

Windows 11 version 21H2

10.0.0 <10.0.22000.2777

Microsoft

Windows 10 Version 21H2

10.0.19043.0 <10.0.19044.4046

Microsoft

Windows Server 2019 (Server Core installation)

10.0.17763.0 <10.0.17763.5458

Microsoft

Windows 10 Version 1809

10.0.0 <10.0.17763.5458

Microsoft

Windows Server 2022, 23H2 Edition (Server Core installation)

10.0.25398.0 <10.0.25398.709

Microsoft

Windows 10 Version 1809

10.0.17763.0 <10.0.17763.5458

Microsoft

Windows 11 Version 23H2

10.0.22631.0 <10.0.22631.3155

Attack Intelligence

CWE-693 · Protection Mechanism Failure

Exploits & PoC

lsr00ter/CVE-2024-21412_Water-Hydra

POC code according to trendmicro's research

8 2024-03-21

1 repo — triés par ⭐ Rechercher sur GitHub ↗

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21412

vendor-advisory

Signal Intelligence

Confidenceⓘ

85%

EPSS 93.78%

CVSS v3.1 8.1

Mentions 15

Last Seen Aug 13, 2024

CNA Information

CNA Assigner

microsoft

CNA Title

Internet Shortcut Files Security Feature Bypass Vulnerability

Analyst Note

CVE-2024-21412 is explicitly named as one of two Windows zero-days fixed in Microsoft's February 2024 Patch Tuesday. Multiple sources confirm exploitation in the wild prior to patch availability, with reports of malware attacks leveraging this Internet Shortcut Files bypass. The CVE publication date (2024-02-13) aligns with the patch release, and exploitation is documented in active attacks.