Security
Headlines
HeadlinesLatestCVEs

Tag

#Active Directory Rights Management Services

CVE-2024-39684: Github: CVE-2024-39684 TenCent RapidJSON Elevation of Privilege Vulnerability

**According to the CVSS metrics, successful exploitation of this vulnerability could lead to major loss of confidentiality (C:H), integrity (I:H), and availability (A:H). What does that mean for this vulnerability?** An attacker who successfully exploited this vulnerability could gain high privileges, which include read, write, and delete functionality.

Microsoft Security Response Center
#vulnerability#js#git#Active Directory Rights Management Services#Security Vulnerability
CVE-2024-38517: Github: CVE-2024-38517 TenCent RapidJSON Elevation of Privilege Vulnerability

**According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?** An attacker must send the user a malicious file and convince them to open it.