CVE-2024-49042: Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

CVE-2024-43613: Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

CVE-2024-49032: Microsoft Office Graphics Remote Code Execution Vulnerability

CVE-2024-49031: Microsoft Office Graphics Remote Code Execution Vulnerability

CVE-2024-49029: Microsoft Excel Remote Code Execution Vulnerability

**How could an attacker exploit this vulnerability?**

To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application on the target system exploit the vulnerability to elevate their privileges to a Medium Integrity Level.

Headline

CVE-2024-49039: Windows Task Scheduler Elevation of Privilege Vulnerability

Microsoft Security Response Center: Latest News