Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-41159 |
Description: A library injection vulnerability exists in Microsoft OneNote 16.83 for macOS. A specially crafted library can leverage OneNote's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 21st, 2024 (4 months ago)
|
|
Description: [...]
December 19th, 2024 (4 months ago)
|
|
|
Description: Microsoft has added another Windows 11 24H2 upgrade block for systems with Dirac audio improvement software due to compatibility issues breaking sound output. [...]
December 19th, 2024 (4 months ago)
|
|
|
Description: Microsoft is now blocking Windows 11 24H2 upgrades on systems with Auto HDR enabled due to a compatibility issue that causes game freezes. [...]
December 19th, 2024 (4 months ago)
|
|
CVE-2024-49147 |
Description: Deserialization of untrusted data in Microsoft Update Catalog allows an unauthorized attacker to elevate privileges on the website’s webserver.
CVSS: CRITICAL (9.3) EPSS Score: 0.21%
December 19th, 2024 (4 months ago)
|
|
CVE-2024-49142 |
Description: Microsoft Access Remote Code Execution Vulnerability
CVSS: HIGH (7.8) EPSS Score: 0.05%
December 19th, 2024 (4 months ago)
|
|
CVE-2024-49129 |
Description: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
CVSS: HIGH (7.5) EPSS Score: 0.05%
December 19th, 2024 (4 months ago)
|
|
CVE-2024-43106 |
Description: A library injection vulnerability exists in Microsoft Excel 16.83 for macOS. A specially crafted library can leverage Excel's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 19th, 2024 (4 months ago)
|
|
CVE-2024-42220 |
Description: A library injection vulnerability exists in Microsoft Outlook 16.83.3 for macOS. A specially crafted library can leverage Outlook's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 19th, 2024 (4 months ago)
|
|
CVE-2024-42004 |
Description: A library injection vulnerability exists in Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leverage Teams's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 19th, 2024 (4 months ago)
|