CVE-2024-7528 not closing on Rapid7/Nexpose scans for Windows Server 2012 R2
CVE-2024-7528 is not closing on Rapid7/Nexpose re-scans for Windows 2012 R2 Servers. When the latest ESR package for Windows 2012 R2 is applied the vulnerability remains open even when using ESR version 115.17.0.
When I check the NVD it looks like the only vulnerable versions are <115.7.0. https://nvd.nist.gov/vuln/detail/CVE-2024-7528#range-13199073
Is this vulnerability resolved in any released version of ESR? In browsing the release notes for the past few ESR releases I'm not seeing it mentioned so curious if it's
Alla svar (2)
This was not an issue in the 115 ESR. The bug that caused it landed in Firefox 127.
Thanks Mike! I'm guessing its an issue with the scanner misidentifying which versions are effected by that CVE.