CVE-2024-12382: Chromium: CVE-2024-12382 Use after free in Translate

CVE-2024-12381: Chromium: CVE-2024-12381 Type Confusion in V8

CVE-2024-49071: Windows Defender Information Disclosure Vulnerability

CVE-2024-49147: Microsoft Update Catalog Elevation of Privilege Vulnerability

CVE-2024-49138: Windows Common Log File System Driver Elevation of Privilege Vulnerability

**How could an attacker exploit the vulnerability?**

An unauthenticated attacker could exploit the vulnerability by connecting to a Remote Desktop server and then sending a malicious http request to the server.

Headline

CVE-2024-49129: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

Microsoft Security Response Center: Latest News