Microsoft Security Response Center Blog Alerts

CVE-2024-38199 Windows Line Printer Daemon (LPD) Service Remote Code Execution Vulnerability

Posted on Monday December 02, 2024

Added acknowledgements. This is an informational change only.

 

CVE-2024-49035 Partner.Microsoft.Com Elevation of Privilege Vulnerability

Posted on Tuesday November 26, 2024

An improper access control vulnerability in [Partner.Microsoft.com](https://partner.microsoft.com/) allows an a unauthenticated attacker to elevate privileges over a network.

 

CVE-2024-49038 Microsoft Copilot Studio Elevation Of Privilege Vulnerability

Posted on Tuesday November 26, 2024

Improper neutralization of input during web page generation ('Cross-site Scripting') in Copilot Studio by an unauthorized attacker leads to elevation of privilege over a network.

 

CVE-2024-49053 Microsoft Dynamics 365 Sales Spoofing Vulnerability

Posted on Tuesday November 26, 2024

Information published.

 

CVE-2024-49052 Microsoft Azure PolicyWatch Elevation of Privilege Vulnerability

Posted on Tuesday November 26, 2024

Missing authentication for critical function in Microsoft Azure PolicyWatch allows an unauthorized attacker to elevate privileges over a network.

 

CVE-2024-49054 Microsoft Edge (Chromium-based) Spoofing Vulnerability

Posted on Friday November 22, 2024

Updated CWE value. This is an informational change only.

 

Page:   1...404142434445464748...93

Celebrating 35+ Years

Managed Internet Connections

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016