CVE-2024-35270 is a vulnerability classified under CWE-400 (Uncontrolled Resource Consumption) that affects the Windows iSCSI Service on Windows 10 Version 1809 (build 10.0.17763.0). The iSCSI service enables clients to send SCSI commands to storage devices over IP networks, commonly used in enterprise storage environments. This vulnerability allows an unauthenticated attacker with network access to the iSCSI service to trigger excessive resource consumption, leading to denial of service (DoS). The attack complexity is high, meaning exploitation requires specific conditions or knowledge, and no privileges or user interaction are needed. The vulnerability impacts availability only, with no confidentiality or integrity effects. The CVSS v3.1 base score is 5.3 (medium severity), reflecting the limited scope and complexity. No public exploits have been reported yet, and no patches are currently linked, indicating that mitigation may rely on vendor updates or network-level controls. The vulnerability was reserved in May 2024 and published in July 2024. Given the affected product is Windows 10 Version 1809, which is an older release, many organizations may have already moved to newer versions, but legacy systems remain vulnerable. The uncontrolled resource consumption could cause the iSCSI service or the entire system to become unresponsive, disrupting storage access and potentially impacting critical business operations relying on networked storage.

For European organizations, the primary impact is on availability of systems using Windows 10 Version 1809 with iSCSI storage configurations. Denial of service could disrupt access to critical storage resources, affecting data availability and business continuity. Organizations in sectors relying heavily on networked storage, such as finance, healthcare, manufacturing, and government, may face operational disruptions. Since the vulnerability requires network access but no authentication, exposed iSCSI services on internal or external networks increase risk. The medium severity and high attack complexity reduce immediate risk, but legacy systems and insufficient network segmentation could lead to impactful outages. Additionally, unpatched legacy systems are more common in some European countries with slower IT upgrade cycles, increasing potential exposure. While no confidentiality or integrity impact exists, the availability disruption could cause cascading effects on dependent applications and services.

1. Apply any official patches or updates from Microsoft as soon as they become available for Windows 10 Version 1809. 2. If patches are not yet available, restrict network access to the iSCSI service using firewalls or network segmentation to limit exposure only to trusted hosts. 3. Disable the iSCSI service on systems where it is not required to reduce attack surface. 4. Monitor network traffic and system resource usage for unusual spikes that could indicate exploitation attempts. 5. Plan and accelerate migration from Windows 10 Version 1809 to supported, updated Windows versions to reduce exposure to legacy vulnerabilities. 6. Implement intrusion detection or prevention systems with signatures or heuristics for anomalous iSCSI traffic patterns. 7. Conduct regular vulnerability assessments and penetration testing focused on networked storage services to identify and remediate exposure.