Lucene search
K

2931 matches found

Rapid7 Blog
Rapid7 Blog
added 2024/08/13 11:36 p.m.11 views

Patch Tuesday - August 2024

Microsoft is addressing 88 vulnerabilities this August 2024 Patch Tuesday. Microsoft has evidence of in-the-wild exploitation and/or public disclosure for ten of the vulnerabilities published today, which is significantly more than usual. At time of writing, all six of the known-exploited...

9.8CVSS9.5AI score0.70564EPSS
Exploits32
CVE
CVE
added 2024/08/13 11:23 p.m.344 views

CVE-2024-38163

CVE-2024-38163 is a Windows Update Stack Elevation of Privilege vulnerability with a CVSS v3.1 base score of 7.8 (LOCAL, Low attack complexity, Low privileges required, No user interaction). It affects the Windows Update servicing stack and can lead to SYSTEM-level compromise under local access. ...

7.8CVSS8.3AI score0.00651EPSS
Exploits0References1Affected Software4
Cvelist
Cvelist
added 2024/08/13 11:23 p.m.62 views

CVE-2024-38163 Windows Update Stack Elevation of Privilege Vulnerability

...

7.8CVSS0.00651EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/13 11:23 p.m.49 views

CVE-2024-38163 Windows Update Stack Elevation of Privilege Vulnerability

...

7.8CVSS6.8AI score0.00651EPSS
Exploits0References1
Microsoft Security Update
Microsoft Security Update
added 2024/08/13 5:0 p.m.15 views

2024-08 Cumulative Update for Windows 11 for x64-based Systems (KB5041592)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...

7.1AI score
Exploits0
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.285 views

June 11, 2024—KB5039214 (OS Build 14393.7070) - EXPIRED

June 11, 2024—KB5039214 OS Build 14393.7070 - EXPIRED EXPIRATION NOTICEIMPORTANT As of March 31, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. --- 11/19/20 For...

9.8CVSS7AI score0.81729EPSS
Exploits17
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.212 views

June 11, 2024—Hotpatch KB5039330 (OS Build 20348.2522)

None None...

9.8CVSS6.8AI score0.81729EPSS
Exploits20
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.186 views

August 13, 2024—KB5041160 (OS Build 20348.2655)

August 13, 2024—KB5041160 OS Build 20348.2655 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out when...

9.8CVSS8.8AI score0.39196EPSS
Exploits4
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.293 views

August 13, 2024—KB5041578 (OS Build 17763.6189) - EXPIRED

August 13, 2024—KB5041578 OS Build 17763.6189 - EXPIRED EXPIRATION NOTICEIMPORTANT As of March 31, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. ​​​​​​​ 11/17/20 For...

9.8CVSS7AI score0.39196EPSS
Exploits4
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.52 views

June 11, 2024—KB5039225 (OS Build 10240.20680) - EXPIRED

June 11, 2024—KB5039225 OS Build 10240.20680 - EXPIRED EXPIRATION NOTICEIMPORTANT As of January 27, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. --- 12/8/20 For...

9.8CVSS7.2AI score0.68202EPSS
Exploits16
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.122 views

July 9, 2024—KB5040448 (OS Build 10240.20710) - EXPIRED

July 9, 2024—KB5040448 OS Build 10240.20710 - EXPIRED EXPIRATION NOTICEIMPORTANT As of January 27, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. --- 12/8/20 For...

9CVSS7.2AI score0.84345EPSS
Exploits2
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.113 views

KB5042321: Windows Recovery Environment update for Windows 11, version 21H2: January 9, 2024

KB5042321: Windows Recovery Environment update for Windows 11, version 21H2: January 9, 2024 IMPORTANT This update will not be offered if your Windows Recovery Environment WinRE meets any of the following conditions: If the WinRE recovery partition does not have sufficient free space, see the NOT...

7.8CVSS6.8AI score0.00651EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.78 views

August 13, 2024—KB5041782 (OS Build 10240.20751) - EXPIRED

August 13, 2024—KB5041782 OS Build 10240.20751 - EXPIRED EXPIRATION NOTICEIMPORTANT As of January 27, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. --- 12/8/20 For...

9.8CVSS7AI score0.70564EPSS
Exploits28
Kaspersky
Kaspersky
added 2024/08/13 12:0 a.m.20 views

KLA71480 SUI vulnerability in Microsoft Dynamics

A cross-site-scripting XSS vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-38211 Related products Microsoft-Dynamics-365 CVE list CVE-2024-38211 critical KB list 5041557 Solution Install necessary...

8.2CVSS7.4AI score0.00941EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2024/08/13 12:0 a.m.17 views

KLA71483 SUI vulnerability in Microsoft Apps

A spoofing vulnerability vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-38177 CVE list CVE-2024-38177 critical Solution Install necessary updates from the KB section, that are listed in your Windows...

7.8CVSS6.2AI score0.00856EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/13 12:0 a.m.27 views

Microsoft Windows Update Stack 访问控制错误漏洞

Microsoft Windows Update Stack is part of Microsoft Corporation USA for managing updates. An access control error vulnerability exists in Microsoft Windows Update Stack. An attacker could exploit this vulnerability to elevate privileges. The following products and versions are affected:Windows...

7.8CVSS6.3AI score0.00651EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2024/08/13 12:0 a.m.42 views

KLA71478 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in .NET and Visua...

7.5CVSS8.5AI score0.02701EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.4 views

PT-2024-5740 · Microsoft · Windows 10 +1

Name of the Vulnerable Software and Affected Versions: Windows 10 affected versions not specified Description: The issue is related to a lack of access control in the Windows Update Stack component, which can be exploited to elevate privileges. An attacker must first obtain the ability to execute...

7.8CVSS6.9AI score0.00651EPSS
Exploits0References13
Microsoft KB
Microsoft KB
added 2024/08/13 12:0 a.m.17 views

.NET 6.0 Update - August 13, 2024 (KB5042131)

.NET 6.0 Update - August 13, 2024 KB5042131 .NET 6.0 has been refreshed with the latest update as of August 13, 2024. This update contains both security and non-security fixes. See the release notes for details on updated packages..NET 6.0 servicing updates are upgrades. The latest servicing upda...

5.9AI score
Exploits0
Vulnrichment
Vulnrichment
added 2024/08/08 1:59 a.m.68 views

CVE-2024-38202 Windows Update Stack Elevation of Privilege Vulnerability

...

7.3CVSS7.2AI score0.01678EPSS
Exploits0References1
Rows per page
Query Builder