Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Windows 11 installation media bug causes security update failures
Description: Microsoft is warning of an issue when using a media support to install Windows 11, version 24H2, that causes the operating system to not accept further security updates. [...]
Source: BleepingComputer
December 26th, 2024 (5 months ago)
New FlowerStorm Microsoft phishing service fills void left by Rockstar2FA
Description: A new Microsoft 365 phishing-as-a-service platform called "FlowerStorm" is growing in popularity, filling the void left behind by the sudden shutdown of the Rockstar2FA cybercrime service. [...]
Source: BleepingComputer
December 23rd, 2024 (6 months ago)
Microsoft fixes bug behind random Office 365 deactivation errors
Description: ​Microsoft has rolled out a fix for a known issue that causes random "Product Deactivated" errors for customers using Microsoft 365 Office apps. [...]
Source: BleepingComputer
December 23rd, 2024 (6 months ago)

CVE-2024-43594
Microsoft System Center Elevation of Privilege Vulnerability
Description: Microsoft System Center Elevation of Privilege Vulnerability

CVSS: HIGH (7.3)

EPSS Score: 0.05%

Source: CVE
December 21st, 2024 (6 months ago)

CVE-2024-41165
A library injection vulnerability exists in Microsoft Word 16.83 for macOS. A specially crafted library can leverage Word's access privileges,...
Description: A library injection vulnerability exists in Microsoft Word 16.83 for macOS. A specially crafted library can leverage Word's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
December 21st, 2024 (6 months ago)

CVE-2024-41159
A library injection vulnerability exists in Microsoft OneNote 16.83 for macOS. A specially crafted library can leverage OneNote's access...
Description: A library injection vulnerability exists in Microsoft OneNote 16.83 for macOS. A specially crafted library can leverage OneNote's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
December 21st, 2024 (6 months ago)
Microsoft 365 users hit by random product deactivation errors
Description: [...]
Source: BleepingComputer
December 19th, 2024 (6 months ago)
Windows 11 24H2 upgrades blocked on some PCs due to audio issues
Description: ​Microsoft has added another Windows 11 24H2 upgrade block for systems with Dirac audio improvement software due to compatibility issues breaking sound output. [...]
Source: BleepingComputer
December 19th, 2024 (6 months ago)
Microsoft says Auto HDR causes game freezes on Windows 11 24H2
Description: ​Microsoft is now blocking Windows 11 24H2 upgrades on systems with Auto HDR enabled due to a compatibility issue that causes game freezes. [...]
Source: BleepingComputer
December 19th, 2024 (6 months ago)

CVE-2024-49147
Microsoft Update Catalog Elevation of Privilege Vulnerability
Description: Deserialization of untrusted data in Microsoft Update Catalog allows an unauthorized attacker to elevate privileges on the website’s webserver.

CVSS: CRITICAL (9.3)

EPSS Score: 0.21%

Source: CVE
December 19th, 2024 (6 months ago)