CVE-2024-12382: Chromium: CVE-2024-12382 Use after free in Translate

CVE-2024-12381: Chromium: CVE-2024-12381 Type Confusion in V8

CVE-2024-49071: Windows Defender Information Disclosure Vulnerability

CVE-2024-49147: Microsoft Update Catalog Elevation of Privilege Vulnerability

CVE-2024-49127: Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

**According to the CVSS metric, the Attack Vector is Physical (AV:P). What does that mean for this vulnerability?**

An attacker needs physical access to the target computer to plug in a malicious USB drive.

Headline

CVE-2024-49098: Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

Microsoft Security Response Center: Latest News