CVE-2024-38204: Imagine Cup site Information Disclosure Vulnerability

CVE-2024-38139: Microsoft Dataverse Elevation of Privilege Vulnerability

CVE-2024-38190: Power Platform Information Disclosure Vulnerability

CVE-2024-9603: Chromium: CVE-2024-9603 Type Confusion in V8

CVE-2024-9602: Chromium: CVE-2024-9602 Type Confusion in V8

**According to the CVSS metric, privileges required is low (PR:L). What does that mean for this vulnerability?**

Any authenticated attacker could trigger this vulnerability. It does not require admin or other elevated privileges.

Headline

CVE-2023-36566: Microsoft Common Data Model SDK Denial of Service Vulnerability

Microsoft Security Response Center: Latest News