Security News > 2024 > April > Critical 'BatBadBut' Rust Vulnerability Exposes Windows Systems to Attacks
![Critical 'BatBadBut' Rust Vulnerability Exposes Windows Systems to Attacks](/static/build/img/news/critical-batbadbut-rust-vulnerability-exposes-windows-systems-to-attacks-medium.jpg)
2024-04-10 03:05
A critical security flaw in the Rust standard library could be exploited to target Windows users and stage command injection attacks. The vulnerability, tracked as CVE-2024-24576, has a CVSS score of 10.0, indicating maximum severity. That said, it only impacts scenarios where batch files are invoked on Windows with untrusted arguments. "The Rust standard library did not properly escape
News URL
https://thehackernews.com/2024/04/critical-batbadbut-rust-vulnerability.html
Related news
- Critical vulnerability in the RADIUS protocol leaves networking equipment open to attack (source)
- Critical Windows licensing bugs, plus two others under attack, top Patch Tuesday (source)
- Critical Apache HugeGraph Vulnerability Under Attack - Patch ASAP (source)
- London hospitals left in critical condition after ransomware attack (source)
- PHP fixes critical RCE flaw impacting all versions for Windows (source)
- Frontier Communications: 750k people's data stolen in April attack on systems (source)
- New PHP Vulnerability Exposes Windows Servers to Remote Code Execution (source)
- Microsoft Issues Patches for 51 Flaws, Including Critical MSMQ Vulnerability (source)
- Black Basta ransomware gang linked to Windows zero-day attacks (source)
- New Cross-Platform Malware 'Noodle RAT' Targets Windows and Linux Systems (source)
Related Vulnerability
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-04-09 | CVE-2024-24576 | Rust is a programming language. | 0.0 |