Zero Day Initiative — The July 2024 Security Update Review

CVE
Title
Severity
CVSS
Public
Exploited
Type

CVE-2024-38080
Windows Hyper-V Elevation of Privilege
Vulnerability
Important
7.8
No
Yes
EoP

CVE-2024-38112
Windows MSHTML Platform Spoofing
Vulnerability
Important
705
No
Yes
Spoofing

CVE-2024-37985 *
Arm: CVE-2024-37985 Systematic
Identification and Characterization of Proprietary Prefetchers
Important
5.9
Yes
No
Info

CVE-2024-35264
.NET and Visual Studio Remote Code Execution
Vulnerability
Important
8.1
Yes
No
RCE

CVE-2024-38023
Microsoft SharePoint Server Remote Code
Execution Vulnerability
Critical
7.2
No
No
RCE

CVE-2024-38060
Microsoft Windows Codecs Library Remote Code
Execution Vulnerability
Critical
8.8
No
No
RCE

CVE-2024-38074
Windows Remote Desktop Licensing Service
Remote Code Execution Vulnerability
Critical
9.8
No
No
RCE

CVE-2024-38076
Windows Remote Desktop Licensing Service
Remote Code Execution Vulnerability
Critical
9.8
No
No
RCE

CVE-2024-38077
Windows Remote Desktop Licensing Service
Remote Code Execution Vulnerability
Critical
9.8
No
No
RCE

CVE-2024-38095
.NET and Visual Studio Denial of Service
Vulnerability
Important
7.5
No
No
DoS

CVE-2024-30105
.NET Core and Visual Studio Denial of
Service Vulnerability
Important
7.5
No
No
DoS

CVE-2024-38091
Microsoft WS-Discovery Denial of Service
Vulnerability
Important
7.5
No
No
DoS

CVE-2024-35270
Windows iSCSI Service Denial of Service
Vulnerability
Important
5.3
No
No
DoS

CVE-2024-38101
Windows Layer-2 Bridge Network Driver Denial
of Service Vulnerability
Important
6.5
No
No
DoS

CVE-2024-38102
Windows Layer-2 Bridge Network Driver Denial
of Service Vulnerability
Important
6.5
No
No
DoS

CVE-2024-38105
Windows Layer-2 Bridge Network Driver Denial
of Service Vulnerability
Important
6.5
No
No
DoS

CVE-2024-38027
Windows Line Printer Daemon Service Denial
of Service Vulnerability
Important
6.5
No
No
DoS

CVE-2024-38048
Windows Network Driver Interface
Specification (NDIS) Denial of Service Vulnerability
Important
6.5
No
No
DoS

CVE-2024-38031
Windows Online Certificate Status Protocol
(OCSP) Server Denial of Service Vulnerability
Important
7.5
No
No
DoS

CVE-2024-38067
Windows Online Certificate Status Protocol
(OCSP) Server Denial of Service Vulnerability
Important
7.5
No
No
DoS

CVE-2024-38068
Windows Online Certificate Status Protocol
(OCSP) Server Denial of Service Vulnerability
Important
7.5
No
No
DoS

CVE-2024-38015
Windows Remote Desktop Gateway (RD Gateway)
Denial of Service Vulnerability
Important
7.5
No
No
DoS

CVE-2024-38071
Windows Remote Desktop Licensing Service
Denial of Service Vulnerability
Important
7.5
No
No
DoS

CVE-2024-38072
Windows Remote Desktop Licensing Service
Denial of Service Vulnerability
Important
7.5
No
No
DoS

CVE-2024-38073
Windows Remote Desktop Licensing Service
Denial of Service Vulnerability
Important
7.5
No
No
DoS

CVE-2024-38099 †
Windows Remote Desktop Licensing Service
Denial of Service Vulnerability
Important
5.9
No
No
DoS

CVE-2024-38081
.NET, .NET Framework, and Visual Studio
Elevation of Privilege Vulnerability
Important
7.3
No
No
EoP

CVE-2024-38092 †
Azure CycleCloud Elevation of Privilege
Vulnerability
Important
8.8
No
No
EoP

CVE-2024-35261
Azure Network Watcher VM Extension Elevation
of Privilege Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38061
DCOM Remote Cross-Session Activation
Elevation of Privilege Vulnerability
Important
7.5
No
No
EoP

CVE-2024-38052
Kernel Streaming WOW Thunk Service Driver
Elevation of Privilege Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38054
Kernel Streaming WOW Thunk Service Driver
Elevation of Privilege Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38057
Kernel Streaming WOW Thunk Service Driver
Elevation of Privilege Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38089
Microsoft Defender for IoT Elevation of
Privilege Vulnerability
Important
9.1
No
No
EoP

CVE-2024-38013
Microsoft Windows Server Backup Elevation of
Privilege Vulnerability
Important
6.7
No
No
EoP

CVE-2024-38033
PowerShell Elevation of Privilege
Vulnerability
Important
7.3
No
No
EoP

CVE-2024-38043
PowerShell Elevation of Privilege
Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38047
PowerShell Elevation of Privilege
Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38059
Win32k Elevation of Privilege
Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38100
Windows File Explorer Elevation of Privilege
Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38034
Windows Filtering Platform Elevation of
Privilege Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38079
Windows Graphics Component Elevation of
Privilege Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38085
Windows Graphics Component Elevation of
Privilege Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38022
Windows Image Acquisition Elevation of
Privilege Vulnerability
Important
7
No
No
EoP

CVE-2024-38062
Windows Kernel-Mode Driver Elevation of
Privilege Vulnerability
Important
7.8
No
No
EoP

CVE-2024-30079
Windows Remote Access Connection Manager
Elevation of Privilege Vulnerability
Important
7.8
No
No
EoP

CVE-2024-21417
Windows Text Services Framework Elevation of
Privilege Vulnerability
Important
8.8
No
No
EoP

CVE-2024-38066
Windows Win32k Elevation of Privilege
Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38050
Windows Workstation Service Elevation of
Privilege Vulnerability
Important
7.8
No
No
EoP

CVE-2024-38017
Microsoft Message Queuing Information
Disclosure Vulnerability
Important
5.5
No
No
Info

CVE-2024-32987
Microsoft SharePoint Server Information
Disclosure Vulnerability
Important
7.5
No
No
Info

CVE-2024-38055
Microsoft Windows Codecs Library Information
Disclosure Vulnerability
Important
5.5
No
No
Info

CVE-2024-30061
Microsoft Dynamics 365 (On-Premises)
Information Disclosure Vulnerability
Important
7.3
No
No
Info

CVE-2024-38056
Microsoft Windows Codecs Library Information
Disclosure Vulnerability
Important
5.5
No
No
Info

CVE-2024-38041
Windows Kernel Information Disclosure
Vulnerability
Important
5.5
No
No
Info

CVE-2024-30071
Windows Remote Access Connection Manager
Information Disclosure Vulnerability
Important
4.7
No
No
Info

CVE-2024-38064
Windows TCP/IP Information Disclosure
Vulnerability
Important
7.5
No
No
Info

CVE-2024-38086
Azure Kinect SDK Remote Code Execution
Vulnerability
Important
6.4
No
No
RCE

CVE-2024-38044
DHCP Server Service Remote Code Execution
Vulnerability
Important
7.2
No
No
RCE

CVE-2024-38021 †
Microsoft Office Remote Code Execution
Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37334
Microsoft OLE DB Driver for SQL Server
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-38094
Microsoft SharePoint Remote Code Execution
Vulnerability
Important
7.2
No
No
RCE

CVE-2024-38024
Microsoft SharePoint Server Remote Code
Execution Vulnerability
Important
7.2
No
No
RCE

CVE-2024-38019
Microsoft Windows Performance Data Helper
Library Remote Code Execution Vulnerability
Important
7.2
No
No
RCE

CVE-2024-38025
Microsoft Windows Performance Data Helper
Library Remote Code Execution Vulnerability
Important
7.2
No
No
RCE

CVE-2024-38028
Microsoft Windows Performance Data Helper
Library Remote Code Execution Vulnerability
Important
7.2
No
No
RCE

CVE-2024-38032
Microsoft Xbox Remote Code Execution
Vulnerability
Important
7.1
No
No
RCE

CVE-2024-20701
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21303
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21308
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21317
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21331
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21332
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21333
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21335
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21373
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21398
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21414
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21415
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21425
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21428
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-21449
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-28928
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-35256
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-35271
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-35272
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37318
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37319
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37320
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37321
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37322
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37323
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37324
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37326
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37327
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37328
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37329
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37330
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37331
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37332
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37333
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-37336
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-38087
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-38088
SQL Server Native Client OLE DB Provider
Remote Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-38049
Windows Distributed Transaction Coordinator
Remote Code Execution Vulnerability
Important
6.6
No
No
RCE

CVE-2024-38104
Windows Fax Service Remote Code Execution
Vulnerability
Important
8.8
No
No
RCE

CVE-2024-38051
Windows Graphics Component Remote Code
Execution Vulnerability
Important
7.8
No
No
RCE

CVE-2024-38053
Windows Layer-2 Bridge Network Driver Remote
Code Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-30013
Windows MultiPoint Services Remote Code
Execution Vulnerability
Important
8.8
No
No
RCE

CVE-2024-38078
Xbox Wireless Adapter Remote Code Execution
Vulnerability
Important
7.5
No
No
RCE

CVE-2024-38058
BitLocker Security Feature Bypass
Vulnerability
Important
6.8
No
No
SFB

CVE-2024-26184
Secure Boot Security Feature Bypass
Vulnerability
Important
6.8
No
No
SFB

CVE-2024-28899
Secure Boot Security Feature Bypass
Vulnerability
Important
8.8
No
No
SFB

CVE-2024-37969
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37970
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37971
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37972
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37973
Secure Boot Security Feature Bypass
Vulnerability
Important
8.4
No
No
SFB

CVE-2024-37974
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37975
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37977
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37978
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37981
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37984
Secure Boot Security Feature Bypass
Vulnerability
Important
8.4
No
No
SFB

CVE-2024-37986
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37987
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37988
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-37989
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-38010
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-38011
Secure Boot Security Feature Bypass
Vulnerability
Important
8
No
No
SFB

CVE-2024-38065
Secure Boot Security Feature Bypass
Vulnerability
Important
6.8
No
No
SFB

CVE-2024-30098
Windows Cryptographic Services Security
Feature Bypass Vulnerability
Important
7.5
No
No
SFB

CVE-2024-38069
Windows Enroll Engine Security Feature
Bypass Vulnerability
Important
7
No
No
SFB

CVE-2024-38070
Windows LockDown Policy (WLDP) Security
Feature Bypass Vulnerability
Important
7.8
No
No
SFB

CVE-2024-35266
Azure DevOps Server Spoofing
Vulnerability
Important
7.6
No
No
Spoofing

CVE-2024-35267
Azure DevOps Server Spoofing
Vulnerability
Important
7.6
No
No
Spoofing

CVE-2024-3596 *
CERT/CC: CVE-2024-3596 RADIUS Protocol
Spoofing Vulnerability
Important
7.5
No
No
Spoofing

CVE-2024-30081
Windows NTLM Spoofing Vulnerability
Important
7.1
No
No
Spoofing

CVE-2024-38030
Windows Themes Spoofing Vulnerability
Important
6.5
No
No
Spoofing

CVE-2024-38517 *
Github: CVE-2024-38517 TenCent RapidJSON
Elevation of Privilege Vulnerability
Moderate
7.8
No
No
EoP

CVE-2024-39684 *
Github: CVE-2024-39684 TenCent RapidJSON
Elevation of Privilege Vulnerability
Moderate
7.8
No
No
EoP

CVE-2024-38020
Microsoft Outlook Spoofing
Vulnerability
Moderate
6.5
No
No
Spoofing

Betterinfo.news

Betterinfo.news

Zero Day Initiative — The July 2024 Security Update Review

Zero Day Initiative — The July 2024 Security Update Review

Author

Related Posts

North Korean APT Bypasses DMARC for Cyber Espionage

Mistrial declared for ex-AT&T exec accused of bribing government official

Leave a Reply Cancel reply

Other Story

Former NFL kicker reveals why he’s backing Trump and how he’s trying to help turn a key swing state red

Consumer confidence tumbles ahead of Budget

Prince Harry desperate to run from his ‘Californian paradise’: ‘There’s trouble’

Julia Roberts joins fellow stars in celebrity ‘political’ endorsement

Boost the value of your property with smart home technology

Zayn Malik marks major milestone with Gigi Hadid