CVE-2024-38016: Microsoft Office Visio Remote Code Execution Vulnerability

CVE-2024-43460: Dynamics 365 Business Central Elevation of Privilege Vulnerability

CVE-2024-38183: GroupMe Elevation of Privilege Vulnerability

CVE-2024-8639: Chromium: CVE-2024-8639 Use after free in Autofill

CVE-2024-8638: Chromium: CVE-2024-8638 Type Confusion in V8

**What privileges could be gained by an attacker who successfully exploited the vulnerability?**

An attacker who successfully exploited the vulnerability could elevate privileges and read any file on the file system with SYSTEM access permissions.

Headline

CVE-2024-35255: Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability

Microsoft Security Response Center: Latest News