Microsoft Security Vulnerabilities

CVE-2024-38142

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

CVE-2024-38143

Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability

CVE-2024-38144

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

CVE-2024-38145

Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability

CVE-2024-38146

Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability

CVE-2024-38147

Microsoft DWM Core Library Elevation of Privilege Vulnerability

CVE-2024-38148

Windows Secure Channel Denial of Service Vulnerability

CVE-2024-38150

Windows DWM Core Library Elevation of Privilege Vulnerability

CVE-2024-38151

Windows Kernel Information Disclosure Vulnerability

CVE-2024-38152

Windows OLE Remote Code Execution Vulnerability

CVE-2024-38153

Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-38154

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CVE-2024-38155

Security Center Broker Information Disclosure Vulnerability

CVE-2024-38156

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-38157

Azure IoT SDK Remote Code Execution Vulnerability

CVE-2024-38158

Azure IoT SDK Remote Code Execution Vulnerability

CVE-2024-38159

Windows Network Virtualization Remote Code Execution Vulnerability

CVE-2024-38160

Windows Network Virtualization Remote Code Execution Vulnerability

CVE-2024-38161

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

CVE-2024-38162

Azure Connected Machine Agent Elevation of Privilege Vulnerability

CVE-2024-38163

Windows Update Stack Elevation of Privilege Vulnerability

CVE-2024-38164

An improper access control vulnerability in GroupMe allows an a unauthenticated attacker to elevate privileges over a network by convincing a user to click on a malicious link.

CVE-2024-38165

Windows Compressed Folder Tampering Vulnerability

CVE-2024-38166

An unauthenticated attacker can exploit improper neutralization of input during web page generation in Microsoft Dynamics 365 to spoof over a network by tricking a user to click on a link.

CVE-2024-38167

.NET and Visual Studio Information Disclosure Vulnerability

CVE-2024-38168

.NET and Visual Studio Denial of Service Vulnerability

CVE-2024-38169

Microsoft Office Visio Remote Code Execution Vulnerability

CVE-2024-38170

Microsoft Excel Remote Code Execution Vulnerability

CVE-2024-38171

Microsoft PowerPoint Remote Code Execution Vulnerability

CVE-2024-38172

Microsoft Excel Remote Code Execution Vulnerability

CVE-2024-38173

Microsoft Outlook Remote Code Execution Vulnerability

CVE-2024-38175

An improper access control vulnerability in the Azure Managed Instance for Apache Cassandra allows an authenticated attacker to elevate privileges over a network.

CVE-2024-38176

An improper restriction of excessive authentication attempts in GroupMe allows a unauthenticated attacker to elevate privileges over a network.

CVE-2024-38177

Windows App Installer Spoofing Vulnerability

CVE-2024-38178

Scripting Engine Memory Corruption Vulnerability

CVE-2024-38180

Windows SmartScreen Security Feature Bypass Vulnerability

CVE-2024-38182

Weak authentication in Microsoft Dynamics 365 allows an unauthenticated attacker to elevate privileges over a network.

CVE-2024-38184

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

CVE-2024-38185

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

CVE-2024-38186

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

CVE-2024-38187

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

CVE-2024-38188

Azure Network Watcher VM Agent Elevation of Privilege Vulnerability

CVE-2024-38189

Microsoft Project Remote Code Execution Vulnerability

CVE-2024-38191

Kernel Streaming Service Driver Elevation of Privilege Vulnerability

CVE-2024-38193

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2024-38194

An authenticated attacker can exploit an improper authorization vulnerability in Azure Web Apps to elevate privileges over a network.

CVE-2024-38195

Azure CycleCloud Remote Code Execution Vulnerability

CVE-2024-38196

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2024-38197

Microsoft Teams for iOS Spoofing Vulnerability

CVE-2024-38198

Windows Print Spooler Elevation of Privilege Vulnerability