CVE-2024-43558

Q: What is the severity of CVE-2024-43558?

CVE-2024-43558 has a CVSS score of 6.5 (MEDIUM). This vulnerability in the Windows Mobile Broadband Driver allows an attacker to cause a denial of service (system crash/BSOD) by sending specially crafted network packets. It affects Windows systems with mobile broadband hardware or drivers installed. Attackers need local network access to exploit this vulnerability.

6.5 MEDIUM

Denial of Service

📋 TL;DR

This vulnerability in the Windows Mobile Broadband Driver allows an attacker to cause a denial of service (system crash/BSOD) by sending specially crafted network packets. It affects Windows systems with mobile broadband hardware or drivers installed. Attackers need local network access to exploit this vulnerability.

💻 Affected Systems

Products:

Windows Mobile Broadband Driver

Versions: Windows 10, Windows 11, Windows Server 2019, Windows Server 2022

Operating Systems: Windows 10, Windows 11, Windows Server 2019, Windows Server 2022

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects systems with mobile broadband hardware/drivers installed. Systems without mobile broadband adapters are not vulnerable.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system crash requiring reboot, potentially disrupting critical services on affected systems.

🟠

Likely Case

Temporary denial of service affecting mobile broadband connectivity until system reboot.

🟢

If Mitigated

Minimal impact with proper network segmentation and patching in place.

🌐 Internet-Facing: LOW - Requires local network access, not directly exploitable from the internet.

🏢 Internal Only: MEDIUM - Internal attackers or compromised internal systems could exploit this to disrupt mobile broadband connectivity.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires sending specially crafted packets to the vulnerable driver, which can be done from the local network without authentication.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Microsoft Security Update Guide for specific KB numbers

Vendor Advisory: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43558

Restart Required: Yes

Instructions:

1. Open Windows Update Settings
2. Click 'Check for updates'
3. Install all available security updates
4. Restart the system when prompted

🔧 Temporary Workarounds

Disable Mobile Broadband Adapter

windows

Temporarily disable mobile broadband hardware to prevent exploitation

Device Manager > Network adapters > Right-click mobile broadband adapter > Disable device

Network Segmentation

all

Isolate systems with mobile broadband adapters from untrusted networks

🧯 If You Can't Patch

Segment affected systems from untrusted networks
Disable mobile broadband adapters if not required for operations

🔍 How to Verify

Check if Vulnerable:

Check if system has mobile broadband hardware/drivers installed via Device Manager > Network adapters

Check Version:

wmic os get caption, version, buildnumber

Verify Fix Applied:

Verify Windows Update history shows the relevant security update installed

📡 Detection & Monitoring

Log Indicators:

System crash/BSOD events in Event Viewer
Unexpected driver crashes in System logs

Network Indicators:

Unusual network traffic to mobile broadband interfaces
Multiple connection attempts to mobile broadband ports

SIEM Query:

EventID=41 OR EventID=1001 OR Source='Kernel-Power' OR Source='BugCheck'

📊 Metadata

CVE ID: CVE-2024-43558

CVSS v3 Score: 6.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-20

Published: October 8, 2024

Last Updated: October 17, 2024

🔗 References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43558 Patch,Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Windows 10 1809 by Microsoft

Windows 10 1809 by Microsoft

Windows 10 21h2 by Microsoft

Windows 10 21h2 by Microsoft

Windows 10 21h2 by Microsoft

Windows 10 22h2 by Microsoft

Windows 10 22h2 by Microsoft

Windows 10 22h2 by Microsoft

Windows 11 21h2 by Microsoft

Windows 11 21h2 by Microsoft

Windows 11 22h2 by Microsoft

Windows 11 22h2 by Microsoft

Windows 11 23h2 by Microsoft

Windows 11 23h2 by Microsoft

Windows 11 24h2 by Microsoft

Windows 11 24h2 by Microsoft

Windows Server 2019 by Microsoft

Windows Server 2022 23h2 by Microsoft

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Disable Mobile Broadband Adapter

Network Segmentation

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities