CVSS: 6.5EPSS: 0%CPEs: 13EXPL: 0CVE-2024-43487 – Windows Mark of the Web Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-43487
Windows Mark of the Web Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43487 • CWE-693: Protection Mechanism Failure •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2024-30073 – Windows Security Zone Mapping Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-30073
Windows Security Zone Mapping Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30073 • CWE-41: Improper Resolution of Path Equivalence •
CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43479 – Microsoft Power Automate Desktop Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-43479
Microsoft Power Automate Desktop Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43479 • CWE-284: Improper Access Control •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43476 – Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
https://notcve.org/view.php?id=CVE-2024-43476
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43476 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.3EPSS: 0%CPEs: 3EXPL: 0CVE-2024-43475 – Microsoft Windows Admin Center Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-43475
Microsoft Windows Admin Center Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43475 • CWE-126: Buffer Over-read •