CVE-2014-4074

Description

The Task Scheduler in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via an application that schedules a crafted task, aka Task Scheduler Vulnerability.

Risk Information

Base Score

7.1

MODERATE

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

EPSS Score

Exploitation Probability

1.722

Associated Vulnerability

Vulnerability	OS Platform
ms14-054: vulnerability in windows task scheduler could allow elevation of privilege: september 9, 2014 for Windows 8 (KB2988948)	Windows
ms14-054: vulnerability in windows task scheduler could allow elevation of privilege: september 9, 2014 for Windows 8.1 (KB2988948)	Windows
ms14-054: vulnerability in windows task scheduler could allow elevation of privilege: september 9, 2014 for Windows 8 for x64-based Systems (KB2988948)	Windows
ms14-054: vulnerability in windows task scheduler could allow elevation of privilege: september 9, 2014 for Windows 8.1 for x64-based Systems (KB2988948)	Windows
ms14-054: vulnerability in windows task scheduler could allow elevation of privilege: september 9, 2014 for Windows Server 2012 (KB2988948)	Windows
ms14-054: vulnerability in windows task scheduler could allow elevation of privilege: september 9, 2014 for Windows Server 2012 R2 (KB2988948)	Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE

Patch ID	Patch Description
PATCH-16115	Security Update for Windows 8 (KB2988948)
PATCH-16116	Security Update for Windows 8.1 (KB2988948)
PATCH-16117	Security Update for Windows 8 for x64-based Systems (KB2988948)
PATCH-16118	Security Update for Windows 8.1 for x64-based Systems (KB2988948)
PATCH-16119	Security Update for Windows Server 2012 (KB2988948)
PATCH-16120	Security Update for Windows Server 2012 R2 (KB2988948)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234