Microsoft Patch Tuesday July 2024

Microsoft Patch Tuesday July 2024

No Comments

Microsoft addresses 138 CVEs in its July 2024 Patch Tuesday release, with five critical vulnerabilities and three zero-day vulnerabilities, two of which were exploited in the wild.

Windows Hyper-V Elevation of Privilege Vulnerability

The vulnerability tracked as CVE-2024-38080 with a CVSSv3 score of 7.8 is an EoP vulnerability in Microsoft Windows Hyper-V virtualization product. A local, authenticated attacker could exploit this vulnerability to elevate to SYSTEM privileges.

This vulnerability was exploited in the wild as a zero-day. No further details have been shared about the in-the-wild exploitation. There have been 44 vulnerabilities in Windows Hyper-V that have been patched since 2022. This is the first Hyper-V vulnerability that has been exploited in the wild as a zero-day.

Windows MSHTML Platform Spoofing Vulnerability

The vulnerability tracked as CVE-2024-38112 with a CVSSv3 score of 7.5 is a spoofing vulnerability in Windows MSHTML. An unauthenticated, remote attacker could exploit this vulnerability by convincing a potential target to open a malicious file. Microsoft notes that to successfully exploit this flaw, an attacker would also need to take “additional actions” to “prepare the target environment.”

This vulnerability was exploited in the wild as a zero-day. No further details about in-the-wild exploitation were available.

Advertisements

.NET and Visual Studio Remote Code Execution Vulnerability

The vulnerability tracked as CVE-2024-35264 with a CVSSv3 score of 8.1, is a RCE vulnerability affecting.NET and Visual Studio. It is the third Microsoft zero-day vulnerability patched this month. While it was not exploited in the wild, details were made public prior to the release of a patch. According to the advisory, exploitation requires an attacker to win a race condition and the exploitability reflects this as it is rated as “Exploitation Less Likely.”

Windows Imaging Component Remote Code Execution Vulnerability

The vulnerability tracked as CVE-2024-38060 with a CVSSv3 score of 8.8 is a RCE vulnerability affecting the Windows Imaging Component, a framework used for processing images. Microsoft rates this vulnerability as “Exploitation More Likely”. Exploitation of this flaw requires an attacker to be authenticated and utilize this access to upload a malicious Tag Image File Format (TIFF) file, an image type used for graphics.

Windows Win32k Elevation of Privilege Vulnerability

The vulnerability tracked as CVE-2024-38059 and CVE-2024-38066 with both assigned CVSSv3 scores of 7.8, are EoP vulnerabilities affecting Windows Win32k, a core kernel-side driver used in Windows. An attacker could exploit these vulnerabilities as part of post-compromise activity to elevate privileges to SYSTEM. Microsoft rates these vulnerabilities as “Exploitation More Likely.”

Microsoft Office Remote Code Execution Vulnerability

The vulnerability tracked as CVE-2024-38021with a CVSSv3 score of 8.8 is a RCE vulnerability affecting Microsoft Office 2016. This vulnerability rated as “Exploitation More Likely.” Successful exploitation would allow an attacker to gain elevated privileges, including write, read, and delete functionality. Microsoft notes that exploitation requires an attacker to create a malicious link that can bypass Protected View Protocol. Based on Microsoft’s description, an attacker would have to entice a user into clicking the link, by sending it to an unsuspecting user in a phishing attack. This would result in the attacker gaining access to local NTLM credential information which could be utilized for elevated access to achieve RCE.

Advertisements

Microsoft OLE DB Driver and SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

This month’s release included 38 CVEs for RCEs affecting SQL Server Native Client OLE DB Provider and the OLE DB Driver for SQL Server. All these CVEs received CVSSv3 scores of 8.8 and were rated as “Exploitation Less Likely.” Successful exploitation of these vulnerabilities can be achieved by convincing an authenticated user into connecting to a malicious SQL server database using an affected driver.

Systematic Identification and Characterization of Proprietary Prefetchers

The vulnerability tracked as CVE-2024-37985 with a CVSSv3 score of 5.9. Microsoft has fixed a previously disclosed “Fetch Bench” side-channel attack that can be used to steal “secret information.”

An attacker who successfully exploited this vulnerability could view heap memory from a privileged process running on the server. Successful exploitation of this vulnerability requires an attacker to take additional actions prior to exploitation to prepare the target environment.

Advertisements

Patch Tuesday Summary

CVE IDCVE TitleSeverity
CVE-2024-38023Microsoft SharePoint Server Remote Code Execution VulnerabilityCritical
CVE-2024-38060Windows Imaging Component Remote Code Execution VulnerabilityCritical
CVE-2024-38076Windows Remote Desktop Licensing Service Remote Code Execution VulnerabilityCritical
CVE-2024-38074Windows Remote Desktop Licensing Service Remote Code Execution VulnerabilityCritical
CVE-2024-38077Windows Remote Desktop Licensing Service Remote Code Execution VulnerabilityCritical
CVE-2024-30105.NET Core and Visual Studio Denial of Service VulnerabilityImportant
CVE-2024-38081.NET, .NET Framework, and Visual Studio Elevation of Privilege VulnerabilityImportant
CVE-2024-35264.NET and Visual Studio Remote Code Execution VulnerabilityImportant
CVE-2024-38095.NET and Visual Studio Denial of Service VulnerabilityImportant
CVE-2024-38092Azure CycleCloud Elevation of Privilege VulnerabilityImportant
CVE-2024-35266Azure DevOps Server Spoofing VulnerabilityImportant
CVE-2024-35267Azure DevOps Server Spoofing VulnerabilityImportant
CVE-2024-38086Azure Kinect SDK Remote Code Execution VulnerabilityImportant
CVE-2024-35261Azure Network Watcher VM Extension Elevation of Privilege VulnerabilityImportant
CVE-2024-37985Arm: CVE-2024-37985 Systematic Identification and Characterization of Proprietary PrefetchersImportant
CVE-2024-38027Windows Line Printer Daemon Service Denial of Service VulnerabilityImportant
CVE-2024-38089Microsoft Defender for IoT Elevation of Privilege VulnerabilityImportant
CVE-2024-30061Microsoft Dynamics 365 (On-Premises) Information Disclosure VulnerabilityImportant
CVE-2024-38079Windows Graphics Component Elevation of Privilege VulnerabilityImportant
CVE-2024-38051Windows Graphics Component Remote Code Execution VulnerabilityImportant
CVE-2024-38021Microsoft Office Remote Code Execution VulnerabilityImportant
CVE-2024-38024Microsoft SharePoint Server Remote Code Execution VulnerabilityImportant
CVE-2024-32987Microsoft SharePoint Server Information Disclosure VulnerabilityImportant
CVE-2024-38094Microsoft SharePoint Remote Code Execution VulnerabilityImportant
CVE-2024-38057Kernel Streaming WOW Thunk Service Driver Elevation of Privilege VulnerabilityImportant
CVE-2024-38054Kernel Streaming WOW Thunk Service Driver Elevation of Privilege VulnerabilityImportant
CVE-2024-38052Kernel Streaming WOW Thunk Service Driver Elevation of Privilege VulnerabilityImportant
CVE-2024-38055Microsoft Windows Codecs Library Information Disclosure VulnerabilityImportant
CVE-2024-38056Microsoft Windows Codecs Library Information Disclosure VulnerabilityImportant
CVE-2024-38091Microsoft WS-Discovery Denial of Service VulnerabilityImportant
CVE-2024-38048Windows Network Driver Interface Specification (NDIS) Denial of Service VulnerabilityImportant
CVE-2024-3596CERT/CC: CVE-2024-3596 RADIUS Protocol Spoofing VulnerabilityImportant
CVE-2024-38061DCOM Remote Cross-Session Activation Elevation of Privilege VulnerabilityImportant
CVE-2024-38080Windows Hyper-V Elevation of Privilege VulnerabilityImportant
CVE-2024-28928SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-38088SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-20701SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21317SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21331SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21308SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21333SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-35256SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21303SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21335SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-35271SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-35272SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21332SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-38087SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21425SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21449SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37324SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37330SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37326SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37329SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37328SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37327SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37334Microsoft OLE DB Driver for SQL Server Remote Code Execution VulnerabilityImportant
CVE-2024-37321SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37320SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37319SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37322SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37333SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37336SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37323SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37331SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21398SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21373SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37318SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21428SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21415SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-37332SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-21414SQL Server Native Client OLE DB Provider Remote Code Execution VulnerabilityImportant
CVE-2024-38058BitLocker Security Feature Bypass VulnerabilityImportant
CVE-2024-38100Windows File Explorer Elevation of Privilege VulnerabilityImportant
CVE-2024-21417Windows Text Services Framework Elevation of Privilege VulnerabilityImportant
CVE-2024-30098Windows Cryptographic Services Security Feature Bypass VulnerabilityImportant
CVE-2024-38044DHCP Server Service Remote Code Execution VulnerabilityImportant
CVE-2024-38049Windows Distributed Transaction Coordinator Remote Code Execution VulnerabilityImportant
CVE-2024-38069Windows Enroll Engine Security Feature Bypass VulnerabilityImportant
CVE-2024-38104Windows Fax Service Remote Code Execution VulnerabilityImportant
CVE-2024-38034Windows Filtering Platform Elevation of Privilege VulnerabilityImportant
CVE-2024-38022Windows Image Acquisition Elevation of Privilege VulnerabilityImportant
CVE-2024-38105Windows Layer-2 Bridge Network Driver Denial of Service VulnerabilityImportant
CVE-2024-38053Windows Layer-2 Bridge Network Driver Remote Code Execution VulnerabilityImportant
CVE-2024-38102Windows Layer-2 Bridge Network Driver Denial of Service VulnerabilityImportant
CVE-2024-38101Windows Layer-2 Bridge Network Driver Denial of Service VulnerabilityImportant
CVE-2024-35270Windows iSCSI Service Denial of Service VulnerabilityImportant
CVE-2024-38041Windows Kernel Information Disclosure VulnerabilityImportant
CVE-2024-38062Windows Kernel-Mode Driver Elevation of Privilege VulnerabilityImportant
CVE-2024-38070Windows LockDown Policy (WLDP) Security Feature Bypass VulnerabilityImportant
CVE-2024-38017Microsoft Message Queuing Information Disclosure VulnerabilityImportant
CVE-2024-38112Windows MSHTML Platform Spoofing VulnerabilityImportant
CVE-2024-30013Windows MultiPoint Services Remote Code Execution VulnerabilityImportant
CVE-2024-30081Windows NTLM Spoofing VulnerabilityImportant
CVE-2024-38068Windows Online Certificate Status Protocol (OCSP) Server Denial of Service VulnerabilityImportant
CVE-2024-38067Windows Online Certificate Status Protocol (OCSP) Server Denial of Service VulnerabilityImportant
CVE-2024-38031Windows Online Certificate Status Protocol (OCSP) Server Denial of Service VulnerabilityImportant
CVE-2024-38028Microsoft Windows Performance Data Helper Library Remote Code Execution VulnerabilityImportant
CVE-2024-38019Microsoft Windows Performance Data Helper Library Remote Code Execution VulnerabilityImportant
CVE-2024-38025Microsoft Windows Performance Data Helper Library Remote Code Execution VulnerabilityImportant
CVE-2024-38043PowerShell Elevation of Privilege VulnerabilityImportant
CVE-2024-38047PowerShell Elevation of Privilege VulnerabilityImportant
CVE-2024-38033PowerShell Elevation of Privilege VulnerabilityImportant
CVE-2024-30071Windows Remote Access Connection Manager Information Disclosure VulnerabilityImportant
CVE-2024-30079Windows Remote Access Connection Manager Elevation of Privilege VulnerabilityImportant
CVE-2024-38015Windows Remote Desktop Gateway (RD Gateway) Denial of Service VulnerabilityImportant
CVE-2024-38071Windows Remote Desktop Licensing Service Denial of Service VulnerabilityImportant
CVE-2024-38073Windows Remote Desktop Licensing Service Denial of Service VulnerabilityImportant
CVE-2024-38072Windows Remote Desktop Licensing Service Denial of Service VulnerabilityImportant
CVE-2024-38099Windows Remote Desktop Licensing Service Denial of Service VulnerabilityImportant
CVE-2024-38065Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37986Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37981Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37987Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-28899Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-26184Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-38011Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37984Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37988Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37977Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37978Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37974Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-38010Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37989Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37970Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37975Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37972Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37973Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37971Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-37969Secure Boot Security Feature Bypass VulnerabilityImportant
CVE-2024-38013Microsoft Windows Server Backup Elevation of Privilege VulnerabilityImportant
CVE-2024-38064Windows TCP/IP Information Disclosure VulnerabilityImportant
CVE-2024-38030Windows Themes Spoofing VulnerabilityImportant
CVE-2024-38085Windows Graphics Component Elevation of Privilege VulnerabilityImportant
CVE-2024-38066Windows Win32k Elevation of Privilege VulnerabilityImportant
CVE-2024-38059Win32k Elevation of Privilege VulnerabilityImportant
CVE-2024-38050Windows Workstation Service Elevation of Privilege VulnerabilityImportant
CVE-2024-38032Microsoft Xbox Remote Code Execution VulnerabilityImportant
CVE-2024-38078Xbox Wireless Adapter Remote Code Execution VulnerabilityImportant
CVE-2024-39684Github: CVE-2024-39684 TenCent RapidJSON Elevation of Privilege VulnerabilityModerate
CVE-2024-38517Github: CVE-2024-38517 TenCent RapidJSON Elevation of Privilege VulnerabilityModerate
CVE-2024-38020Microsoft Outlook Spoofing VulnerabilityModerate

Tags:

Comments

No comments yet. Why don’t you start the discussion?

    Leave a Reply

    This site uses Akismet to reduce spam. Learn how your comment data is processed.