Wormable

DevOps Operations Practice

Aug 18, 2024 · Information Security

Critical Windows TCP/IP Vulnerability (CVE‑2024‑38063) Allows Remote Code Execution via IPv6

Microsoft has disclosed a critical Windows TCP/IP stack vulnerability (CVE‑2024‑38063) with a CVSS 9.8 score that enables remote code execution through specially crafted IPv6 packets, is wormable, and can spread laterally across internal networks, prompting immediate patch installation or IPv6 disabling.