Cyber Security News

Microsoft Patches Multiple Vulnerabilities Allow Attackers to Elevate Privileges

Microsoft has recently released patches addressing multiple vulnerabilities that could enable attackers to elevate privileges across various Microsoft products.

The patches are part of Microsoft’s continuous efforts to enhance security and protect its users from threats.

The Microsoft Security Response Center (MSRC) has been actively investigating these vulnerabilities to provide timely and effective security updates.

Microsoft Patches Multiple Vulnerabilities

Several patched vulnerabilities have been classified as “Important” due to their potential impact on system security.

Analyze cyber threats with ANYRUN's powerful sandbox. Black Friday Deals : Get up to 3 Free Licenses.

These vulnerabilities span a range of Microsoft products, from the .NET Framework to Microsoft Exchange Server. Here is a detailed overview of the vulnerabilities and their respective patches:

CVE IDVulnerability DescriptionImpactAffected Product
CVE-2024-29059.NET Framework Information Disclosure VulnerabilityInformation Disclosure.NET Framework
CVE-2024-28916Xbox Crypto Graphic Services Elevation of PrivilegeElevation of PrivilegeXbox Crypto Graphic Services
CVE-2024-26204Outlook for Android Information Disclosure VulnerabilityInformation DisclosureOutlook for Android
CVE-2024-26203Azure Data Studio Elevation of Privilege VulnerabilityElevation of PrivilegeAzure Data Studio
CVE-2024-26201Microsoft Intune Linux Agent Elevation of Privilege VulnerabilityElevation of PrivilegeMicrosoft Intune
CVE-2024-26199Microsoft Office Elevation of Privilege VulnerabilityElevation of PrivilegeMicrosoft Office
CVE-2024-26198Microsoft Exchange Server Remote Code Execution VulnerabilityRemote Code ExecutionMicrosoft Exchange Server
CVE-2024-26197Windows Standards-Based Storage Management Service Denial of Service VulnerabilityDenial of ServiceWindows Standards-Based Storage Management Service

The impact of these vulnerabilities can be significant, allowing attackers to gain elevated privileges and access sensitive information.

Users and administrators are strongly advised to apply these updates as soon as possible to mitigate potential security risks.

Microsoft continues to prioritize the security of its products and services, emphasizing the importance of keeping systems up to date with the latest patches.

Regular system updates and vigilance in applying security patches are crucial in defending against potential cyber threats.

Leveraging 2024 MITRE ATT&CK Results for SME & MSP Cybersecurity Leaders – Attend Free Webinar

Divya

Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Recent Posts

Gunra Ransomware’s Double‑Extortion Playbook and Global Impact

Gunra Ransomware, has surfaced as a formidable threat in April 2025, targeting Windows systems across…

6 hours ago

Hackers Exploit 21 Apps to Take Full Control of E-Commerce Servers

Cybersecurity firm Sansec has uncovered a sophisticated supply chain attack that has compromised 21 popular…

6 hours ago

Hackers Target HR Departments With Fake Resumes to Spread More_eggs Malware

The financially motivated threat group Venom Spider, also tracked as TA4557, has shifted its focus…

7 hours ago

RomCom RAT Targets UK Organizations Through Compromised Customer Feedback Portals

The Russian-based threat group RomCom, also known as Storm-0978, Tropical Scorpius, and Void Rabisu, has…

7 hours ago

Hackers Use Pahalgam Attack-Themed Decoys to Target Indian Government Officials

The Seqrite Labs APT team has uncovered a sophisticated cyber campaign by the Pakistan-linked Transparent…

7 hours ago

LUMMAC.V2 Stealer Uses ClickFix Technique to Deceive Users into Executing Malicious Commands

The LUMMAC.V2 infostealer malware, also known as Lumma or Lummastealer, has emerged as a significant…

7 hours ago