CVE-2024-38016: Microsoft Office Visio Remote Code Execution Vulnerability

CVE-2024-43460: Dynamics 365 Business Central Elevation of Privilege Vulnerability

CVE-2024-38183: GroupMe Elevation of Privilege Vulnerability

CVE-2024-8639: Chromium: CVE-2024-8639 Use after free in Autofill

CVE-2024-8638: Chromium: CVE-2024-8638 Type Confusion in V8

**Why is this GitHub CVE included in the Security Update Guide?**

The vulnerability assigned to this CVE is in Git for Windows software which is consumed by Microsoft Visual Studio. It is being documented in the Security Update Guide to announce that the latest builds of Visual Studio are no longer vulnerable. Please see Security Update Guide Supports CVEs Assigned by Industry Partners for more information.

Headline

CVE-2023-29011: GitHub: CVE-2023-29011 The config file of `connect.exe` is susceptible to malicious placing

Microsoft Security Response Center: Latest News