NewApp Digest
search bot

Microsoft July 2024 Patch Tuesday fixes 142 flaws, 4 zero-days

July 10, 2024

.NET and Visual Studio

There are several vulnerabilities in .NET Core and Visual Studio that have been identified:

  1. CVE-2024-30105: .NET Core and Visual Studio Denial of Service Vulnerability (Severity: Important)
  2. CVE-2024-38081: .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability (Severity: Important)
  3. CVE-2024-35264: .NET and Visual Studio Remote Code Execution Vulnerability (Severity: Important)
  4. CVE-2024-38095: .NET and Visual Studio Denial of Service Vulnerability (Severity: Important)

Active Directory Rights Management Services

Two vulnerabilities have been found in Active Directory Rights Management Services:

  1. CVE-2024-39684: Github: CVE-2024-39684 TenCent RapidJSON Elevation of Privilege Vulnerability (Severity: Moderate)
  2. CVE-2024-38517: Github: CVE-2024-38517 TenCent RapidJSON Elevation of Privilege Vulnerability (Severity: Moderate)

Azure CycleCloud

A vulnerability has been discovered in Azure CycleCloud:

  1. CVE-2024-38092: Azure CycleCloud Elevation of Privilege Vulnerability (Severity: Important)

Azure DevOps

Two vulnerabilities have been identified in Azure DevOps:

  1. CVE-2024-35266: Azure DevOps Server Spoofing Vulnerability (Severity: Important)
  2. CVE-2024-35267: Azure DevOps Server Spoofing Vulnerability (Severity: Important)

Azure Kinect SDK

A vulnerability has been found in Azure Kinect SDK:

  1. CVE-2024-38086: Azure Kinect SDK Remote Code Execution Vulnerability (Severity: Important)

Azure Network Watcher

A vulnerability has been identified in Azure Network Watcher:

  1. CVE-2024-35261: Azure Network Watcher VM Extension Elevation of Privilege Vulnerability (Severity: Important)

Intel

A vulnerability has been discovered in Intel:

  1. CVE-2024-37985: Arm: CVE-2024-37985 Systematic Identification and Characterization of Proprietary Prefetchers (Severity: Important)

Line Printer Daemon Service (LPD)

A vulnerability has been found in the Line Printer Daemon Service:

  1. CVE-2024-38027: Windows Line Printer Daemon Service Denial of Service Vulnerability (Severity: Important)

Microsoft Defender for IoT

A vulnerability has been identified in Microsoft Defender for IoT:

  1. CVE-2024-38089: Microsoft Defender for IoT Elevation of Privilege Vulnerability (Severity: Important)
Winsage
Microsoft July 2024 Patch Tuesday fixes 142 flaws, 4 zero-days