Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2024-29050: Windows Cryptographic Services Remote Code Execution Vulnerability

How could an attacker exploit this vulnerability?

For successful exploitation, a malicious certificate needs to be imported on an affected system. An attacker could upload a certificate to a service that processes or imports certificates, or an attacker could convince an authenticated user to import a certificate on their system.

Microsoft Security Response Center
#vulnerability#windows#rce#auth#Windows Cryptographic Services#Security Vulnerability

Microsoft Security Response Center: Latest News

CVE-2024-49060: Azure Stack HCI Elevation of Privilege Vulnerability