CVE-2024-38016: Microsoft Office Visio Remote Code Execution Vulnerability

CVE-2024-43460: Dynamics 365 Business Central Elevation of Privilege Vulnerability

CVE-2024-38183: GroupMe Elevation of Privilege Vulnerability

CVE-2024-8639: Chromium: CVE-2024-8639 Use after free in Autofill

CVE-2024-8638: Chromium: CVE-2024-8638 Type Confusion in V8

**According to the CVSS metric, a successful exploitation could lead to a scope change (S:C). What does this mean for this vulnerability?**

An exploited vulnerability can affect resources beyond the security scope managed by the security authority of the vulnerable component. In this case, the vulnerable component and the impacted component are different and managed by different security authorities.

Headline

CVE-2024-21364: Microsoft Azure Site Recovery Elevation of Privilege Vulnerability

Microsoft Security Response Center: Latest News