Latest Microsoft Vulnerabilities

CVE-2024-38103
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
Microsoft Edge (Chromium-based)
CVE-2024-39379
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Microsoft Edge<127.0.2651.74
Microsoft Edge (Chromium-based)
CVE-2024-38176
GroupMe Elevation of Privilege Vulnerability
Microsoft GroupMe
CVE-2024-38164
GroupMe Elevation of Privilege Vulnerability
Microsoft GroupMe
CVE-2024-37391
ProtonVPN before 3.2.10 on Windows mishandles the drive installer path, which should use this: '"' + ExpandConstant('{autopf}\Proton\Drive') + '"' in Setup/setup.iss.
Proton Protonvpn<3.2.10
Microsoft Windows
CVE-2024-38156
Microsoft Edge (Chromium-based) Spoofing Vulnerability
Microsoft Edge (Chromium-based)
Microsoft Edge<116.0.1938.81
Microsoft Edge<127.0.2651.74
CVE-2024-6746
NaiboWang EasySpider HTTP GET Request server.js path traversal
Easyspider Easyspider=0.6.2
Microsoft Windows
CVE-2024-6222
In Docker Desktop before v4.29.0 an attacker who has gained access to the Docker Desktop VM through a container breakout can further escape to the host by passing extensions and dashboard related IPC ...
Docker Desktop<4.29.0
Apple macOS
Linux Linux kernel
Microsoft Windows
CVE-2024-39684
Tencent RapidJSON include/rapidjson/reader.h GenericReader::ParseNumber() Function Template Exponent Parsing Integer Overflow
Microsoft Windows Server 2016
Microsoft Windows 10=1809
Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows 10=1607
Microsoft Windows 10=1607
and 30 more
CVE-2024-38019
Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
Microsoft Windows Server 2008 R2
Microsoft Windows 10=22H2
Microsoft Windows Server 2008
Microsoft Windows 10
Microsoft Windows Server 2012
Microsoft Windows 10=1809
and 46 more
CVE-2024-38013
Microsoft Windows Server Backup Elevation of Privilege Vulnerability
Microsoft Windows 10=22H2
Microsoft Windows 10=1607
Microsoft Windows Server 2012
Microsoft Windows 11=21H2
Microsoft Windows 10=1607
Microsoft Windows 10=1809
and 38 more
CVE-2024-37970
Secure Boot Security Feature Bypass Vulnerability
Microsoft Windows 10=22H2
Microsoft Windows 11=21H2
Microsoft Windows 10=21H2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows 11=23H2
and 38 more
CVE-2024-37977
Secure Boot Security Feature Bypass Vulnerability
Microsoft Windows 11=22H2
Microsoft Windows 11=21H2
Microsoft Windows 11=23H2
Microsoft Windows 11=21H2
Microsoft Windows Server 2022, 23H2 Edition
Microsoft Windows 11=22H2
and 8 more
CVE-2024-38041
Windows Kernel Information Disclosure Vulnerability
Microsoft Windows 10=21H2
Microsoft Windows Server 2019
Microsoft Windows 11=23H2
Microsoft Windows Server 2016
Microsoft Windows 10=1607
Microsoft Windows 10=21H2
and 29 more
CVE-2024-38023
Microsoft SharePoint Server Remote Code Execution Vulnerability
Microsoft SharePoint Server 2019
Microsoft SharePoint Enterprise Server 2016
Microsoft SharePoint Server Subscription Edition
Microsoft SharePoint Server
Microsoft SharePoint Server=2016
Microsoft SharePoint Server=2019
CVE-2024-37971
Secure Boot Security Feature Bypass Vulnerability
Microsoft Windows 10=1809
Microsoft Windows 10=1809
Microsoft Windows 10=1607
Microsoft Windows Server 2016
Microsoft Windows 10=1809
Microsoft Windows Server 2022
and 38 more
CVE-2024-37969
Secure Boot Security Feature Bypass Vulnerability
Microsoft Windows 11=23H2
Microsoft Windows Server 2016
Microsoft Windows Server 2022
Microsoft Windows 10=1607
Microsoft Windows 10
Microsoft Windows 11=22H2
and 38 more
CVE-2024-21373
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2016 Azure Connect Feature Pack
Microsoft SQL Server 2016
Microsoft SQL Server 2022
Microsoft SQL Server 2017 (CU 31)
Microsoft SQL Server 2017
Microsoft SQL Server 2019
and 2 more
CVE-2024-35271
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2019
Microsoft SQL Server 2022
Microsoft SQL Server 2017
Microsoft SQL Server 2017 (CU 31)
Microsoft SQL Server 2016
Microsoft SQL Server 2016 Azure Connect Feature Pack
and 2 more
CVE-2024-35267
Azure DevOps Server Spoofing Vulnerability
Microsoft Azure DevOps Server 2022.1
Microsoft Azure DevOps Server=2022.1.0
CVE-2024-30071
Windows Remote Access Connection Manager Information Disclosure Vulnerability
Microsoft Windows 11=22H2
Microsoft Windows 10=1809
Microsoft Windows 11=21H2
Microsoft Windows 10
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2022, 23H2 Edition
and 34 more
CVE-2024-21308
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2016 Azure Connect Feature Pack
Microsoft SQL Server 2017
Microsoft SQL Server 2016
Microsoft SQL Server 2022
Microsoft SQL Server 2019
Microsoft SQL Server 2017 (CU 31)
and 2 more
CVE-2024-37320
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2017
Microsoft SQL Server 2019
Microsoft SQL Server 2016 Azure Connect Feature Pack
Microsoft SQL Server 2016
Microsoft SQL Server 2022
Microsoft SQL Server 2017 (CU 31)
and 2 more
CVE-2024-37323
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2016 Azure Connect Feature Pack
Microsoft SQL Server 2016
Microsoft SQL Server 2022
Microsoft SQL Server 2019
Microsoft SQL Server 2017 (CU 31)
Microsoft SQL Server 2017
and 2 more
CVE-2024-37322
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2017 (CU 31)
Microsoft SQL Server 2019
Microsoft SQL Server 2022
Microsoft SQL Server 2017
Microsoft SQL Server 2016 Azure Connect Feature Pack
Microsoft SQL Server 2016
and 2 more
CVE-2024-30061
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
Microsoft Dynamics 365 (on-premises)=9.1
Microsoft Dynamics 365=9.1
CVE-2024-26184
Secure Boot Security Feature Bypass Vulnerability
Microsoft Windows 11=21H2
Microsoft Windows 10=21H2
Microsoft Windows 10=22H2
Microsoft Windows Server 2022
Microsoft Windows 11=22H2
Microsoft Windows 10=22H2
and 16 more
CVE-2024-38089
Microsoft Defender for IoT Elevation of Privilege Vulnerability
Microsoft Defender for IoT
Microsoft Defender for IoT<24.1.4
CVE-2024-38068
Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability
Microsoft Windows Server 2012
Microsoft Windows 11=23H2
Microsoft Windows 10
Microsoft Windows 11=23H2
Microsoft Windows 10=1607
Microsoft Windows 10=21H2
and 46 more
CVE-2024-38056
Microsoft Windows Codecs Library Information Disclosure Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows 11=23H2
Microsoft Windows Server 2019
Microsoft Windows 11=22H2
Microsoft Windows 11=21H2
Microsoft Windows 10
and 36 more
CVE-2024-32987
Microsoft SharePoint Server Information Disclosure Vulnerability
Microsoft SharePoint Enterprise Server 2016
Microsoft SharePoint Server Subscription Edition
Microsoft SharePoint Server 2019
Microsoft SharePoint Server
Microsoft SharePoint Server=2016
Microsoft SharePoint Server=2019
CVE-2024-38081
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
Microsoft Visual Studio 2022=17.6
Microsoft .NET Framework=3.5=4.7.2
Microsoft Visual Studio 2022=17.8
Microsoft .NET Framework=3.5=4.8
Microsoft .NET 8.0
Microsoft .NET Framework=3.5=4.7.2
and 30 more
CVE-2024-37985
Arm: CVE-2024-37985 Systematic Identification and Characterization of Proprietary Prefetchers
Microsoft Windows 11=23H2
Microsoft Windows 11=22H2
CVE-2024-21415
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2022
Microsoft SQL Server 2017 (CU 31)
Microsoft SQL Server 2017
Microsoft SQL Server 2016
Microsoft SQL Server 2016 Azure Connect Feature Pack
Microsoft SQL Server 2019
and 2 more
CVE-2024-35270
Windows iSCSI Service Denial of Service Vulnerability
Microsoft Windows Server 2016
Microsoft Windows 10=22H2
Microsoft Windows 11=21H2
Microsoft Windows 10=1607
Microsoft Windows Server 2008
Microsoft Windows 10
and 47 more
CVE-2024-28899
Secure Boot Security Feature Bypass Vulnerability
Microsoft Windows 10
Microsoft Windows 11=23H2
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 10=22H2
and 38 more
CVE-2024-21303
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2022
Microsoft SQL Server 2016
Microsoft SQL Server 2017 (CU 31)
Microsoft SQL Server 2017
Microsoft SQL Server 2016 Azure Connect Feature Pack
Microsoft SQL Server 2019
and 2 more
CVE-2024-35272
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2022
Microsoft SQL Server 2019
Microsoft SQL Server 2016 Azure Connect Feature Pack
Microsoft SQL Server 2016
Microsoft SQL Server 2017
Microsoft SQL Server 2017 (CU 31)
and 2 more
CVE-2024-21331
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2022
Microsoft SQL Server 2017 (CU 31)
Microsoft SQL Server 2016 Azure Connect Feature Pack
Microsoft SQL Server 2016
Microsoft SQL Server 2017
Microsoft SQL Server 2019
and 2 more
CVE-2024-21417
Windows Text Services Framework Elevation of Privilege Vulnerability
Microsoft Windows Server 2022
Microsoft Windows 10=1809
Microsoft Windows 11=21H2
Microsoft Windows 10=1809
Microsoft Windows 11=21H2
Microsoft Windows 10=22H2
and 14 more
CVE-2024-37324
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2017
Microsoft SQL Server 2022
Microsoft SQL Server 2019
Microsoft SQL Server 2017 (CU 31)
Microsoft SQL Server 2016
Microsoft SQL Server 2016 Azure Connect Feature Pack
and 2 more
CVE-2024-37318
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2016
Microsoft SQL Server 2016 Azure Connect Feature Pack
Microsoft SQL Server 2017 (CU 31)
Microsoft SQL Server 2022
Microsoft SQL Server 2017
Microsoft SQL Server 2019
and 2 more
CVE-2024-35266
Azure DevOps Server Spoofing Vulnerability
Microsoft Azure DevOps Server 2022.1
Microsoft Azure DevOps Server=2022.1.0
CVE-2024-30013
Windows MultiPoint Services Remote Code Execution Vulnerability
Microsoft Windows Server 2019
Microsoft Windows 11=21H2
Microsoft Windows Server 2016
Microsoft Windows Server 2022
Microsoft Windows 11=22H2
Microsoft Windows 10=1809
and 29 more
CVE-2024-21414
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2016
Microsoft SQL Server 2017 (CU 31)
Microsoft SQL Server 2017
Microsoft SQL Server 2022
Microsoft SQL Server 2019
Microsoft SQL Server 2016 Azure Connect Feature Pack
and 2 more
CVE-2024-30081
Windows NTLM Spoofing Vulnerability
Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows 10=21H2
Microsoft Windows 10=22H2
Microsoft Windows Server 2008 R2
Microsoft Windows 10=1607
and 47 more
CVE-2024-37329
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft SQL Server 2019
Microsoft SQL Server 2016 Azure Connect Feature Pack
Microsoft SQL Server 2016
Microsoft SQL Server 2022
Microsoft SQL Server 2017
Microsoft SQL Server 2017 (CU 31)
and 2 more
CVE-2024-38079
Windows Graphics Component Elevation of Privilege Vulnerability
Microsoft Windows 11=22H2
Microsoft Windows 10=22H2
Microsoft Windows 10=1809
Microsoft Windows 11=21H2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008
and 47 more
CVE-2024-38102
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
Microsoft Windows 10=22H2
Microsoft Windows Server 2012
Microsoft Windows 10=22H2
Microsoft Windows 10=21H2
Microsoft Windows Server 2022, 23H2 Edition
Microsoft Windows Server 2012 R2
and 38 more
CVE-2024-38062
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
Microsoft Windows 11=23H2
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft Windows Server 2022, 23H2 Edition
Microsoft Windows Server 2016
Microsoft Windows 10=1607
and 29 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203