Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

Scripting Engine Memory Flaw Exploited

August 13, 2024
Reading Time: 2 mins read
in Alerts

CVE-2024-38178 is a memory corruption vulnerability discovered in the Windows Scripting Engine that allows for remote code execution (RCE) attacks. This vulnerability poses a serious risk if an attacker can convince an authenticated user to click on a crafted link, enabling the unauthenticated attacker to initiate RCE. The attack method hinges on the target using Microsoft Edge in Internet Explorer Mode, which is required for the exploit to succeed. This vulnerability has been assigned a CVSS score of 7.5 out of 10, indicating its significant impact on affected systems.

Microsoft disclosed that this vulnerability has been exploited in the wild, though no indicators of compromise (IOCs) or further details were shared to assist defenders in identifying potential infections. The absence of IOCs makes it more challenging for cybersecurity teams to proactively detect signs of compromise, especially in targeted environments. The lack of telemetry from Microsoft means that defenders must rely on patching the vulnerability promptly to mitigate the risks.

The vulnerability was reported by AhnLab, a cybersecurity firm, and South Korea’s National Cyber Security Center (NCSC), suggesting that it may have been used in advanced persistent threat (APT) attacks, likely tied to nation-state actors. APT attacks often target specific organizations or countries, utilizing sophisticated methods to infiltrate systems and steal sensitive information. The involvement of nation-state entities underscores the critical nature of the vulnerability and its potential for high-stakes exploitation.

Microsoft has released patches to address CVE-2024-38178, urging organizations to apply the fixes immediately. However, the ongoing exploitation of the vulnerability means that systems that have not yet been updated remain at high risk. Cybersecurity professionals are encouraged to monitor systems closely and ensure that users are aware of the potential risks associated with opening suspicious links, particularly in environments where Edge is used in Internet Explorer Mode.

 

Reference:

  • Scripting Engine Memory Corruption Vulnerability

Tags: Advanced Persistent ThreatAhnLabAugust 2024Cyber AlertsCyber Alerts 2024Cyber threatsMicrosoftRemote code executionSouth Korea's National Cyber Security Center (NCSC)Windows Scripting Engine
ADVERTISEMENT

Related Posts

BadIIS Malware Spreads Via SEO Poisoning

Hackers Target AWS and Steal Credentials

September 24, 2025
BadIIS Malware Spreads Via SEO Poisoning

SonicWall SMA100 Update Removes Rootkit

September 24, 2025
BadIIS Malware Spreads Via SEO Poisoning

BadIIS Malware Spreads Via SEO Poisoning

September 24, 2025
FBI Issues Warning on Spoofed IC3 Website

FBI Issues Warning on Spoofed IC3 Website

September 22, 2025
FBI Issues Warning on Spoofed IC3 Website

Infostealer Hits macOS Users Widely

September 22, 2025
FBI Issues Warning on Spoofed IC3 Website

SonicWall Warns Reset After Exposure

September 22, 2025

Latest Alerts

Hackers Target AWS and Steal Credentials

SonicWall SMA100 Update Removes Rootkit

BadIIS Malware Spreads Via SEO Poisoning

SonicWall Warns Reset After Exposure

Infostealer Hits macOS Users Widely

FBI Issues Warning on Spoofed IC3 Website

Subscribe to our newsletter

    Latest Incidents

    Boyd Gaming Reports Data Breach After Attack

    Morrisroe UK Company Hit By Cyber Attack

    GeoServer Flaw Breaches US Agency Network

    Steam Game Steals Streamer Donations

    Ransomware Gang Hacks Spartanburg County

    Cyberattack Hits Europe Airport Systems

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial