Description
Windows libarchive Remote Code Execution Vulnerability
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Microsoft | Windows 10 Version 1809 | affected |
|
||||||
| Microsoft | Windows 10 Version 1809 | affected |
|
||||||
| Microsoft | Windows Server 2019 | affected |
|
||||||
| Microsoft | Windows Server 2019 (Server Core installation) | affected |
|
||||||
| Microsoft | Windows Server 2022 | affected |
|
||||||
| Microsoft | Windows 11 version 21H2 | affected |
|
||||||
| Microsoft | Windows 10 Version 21H2 | affected |
|
||||||
| Microsoft | Windows 11 version 22H2 | affected |
|
||||||
| Microsoft | Windows 10 Version 22H2 | affected |
|
||||||
| Microsoft | Windows 11 version 22H3 | affected |
|
||||||
| Microsoft | Windows 11 Version 23H2 | affected |
|
||||||
| Microsoft | Windows Server 2022, 23H2 Edition (Server Core installation) | affected |
|
Configuration 1 [-]
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 Debian DLA |
DLA-3950-1 | libarchive security update |
 Debian DSA |
DSA-5806-1 | libarchive security update |
 EUVD |
EUVD-2024-18411 | Windows libarchive Remote Code Execution Vulnerability |
 Ubuntu USN |
USN-7087-1 | libarchive vulnerability |
References
History
Mon, 03 Nov 2025 22:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Thu, 17 Apr 2025 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 31 Dec 2024 18:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| CPEs | cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.5329:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.5329:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.3930:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.3930:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.3930:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.3930:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.3930:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.3930:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.2713:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.2713:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.3007:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.3007:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_11_23H2:10.0.22631.3007:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_11_23H2:10.0.22631.3007:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.5329:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.2227:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_server_23h2:10.0.25398.643:*:*:*:*:*:*:* |
|
| Vendors & Products |
Microsoft windows 10 21h2
Microsoft windows 10 22h2 Microsoft windows 11 21h2 Microsoft windows 11 22h2 Microsoft windows 11 23h2 Microsoft windows Server 23h2 |
Fri, 22 Nov 2024 12:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Tue, 08 Oct 2024 16:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
MITRE
Status: PUBLISHED
Assigner: microsoft
Published:
Updated: 2025-11-03T21:52:33.503Z
Reserved: 2023-11-28T22:58:12.121Z
Link: CVE-2024-20696
Vulnrichment
Updated: 2025-11-03T21:52:33.503Z
NVD
Status : Modified
Published: 2024-01-09T18:15:52.927
Modified: 2025-11-03T22:16:40.643
Link: CVE-2024-20696
Redhat
OpenCVE Enrichment
No data.
Weaknesses