Microsoft — Vulnerabilities & Security Advisories 8419

Browse all 8419 CVE security advisories affecting Microsoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Microsoft operates as a global technology corporation primarily providing enterprise software, cloud computing services, and consumer electronics. Its extensive software portfolio, including Windows operating systems and Office suites, has historically been associated with a high volume of Common Vulnerabilities and Exposures (CVEs), currently totaling 8,272. Common vulnerability classes affecting these products include remote code execution, cross-site scripting, and privilege escalation, often stemming from complex legacy codebases and extensive feature sets. Notable security incidents include the 2021 SolarWinds supply chain compromise, which impacted Microsoft’s Orion platform, and various critical zero-day exploits in Internet Explorer and Edge browsers. The company maintains a dedicated security response team and regularly issues patches through Windows Update to mitigate these risks, though the sheer scale of its ecosystem continues to present significant attack surfaces for threat actors seeking unauthorized access or data exfiltration.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-49127	Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-416	8.1	High	2024-12-10
CVE-2024-49116	Windows Remote Desktop Services Remote Code Execution Vulnerability — Windows Server 2019CWE-416	8.1	High	2024-12-10
CVE-2024-49114	Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-820	7.8	High	2024-12-10
CVE-2024-49112	Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-190	9.8	Critical	2024-12-10
CVE-2024-49113	Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability — Windows 10 Version 1809CWE-125	7.5	High	2024-12-10
CVE-2024-49110	Windows Mobile Broadband Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-125	6.8	Medium	2024-12-10
CVE-2024-49109	Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-125	6.6	Medium	2024-12-10
CVE-2024-49090	Windows Common Log File System Driver Elevation of Privilege Vulnerability — Windows Server 2025CWE-822	7.8	High	2024-12-10
CVE-2024-49095	Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-591	7.0	High	2024-12-10
CVE-2024-49088	Windows Common Log File System Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-126	7.8	High	2024-12-10
CVE-2024-49083	Windows Mobile Broadband Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-125	6.8	Medium	2024-12-10
CVE-2024-49082	Windows File Explorer Information Disclosure Vulnerability — Windows 10 Version 1809CWE-22	6.8	Medium	2024-12-10
CVE-2024-49080	Windows IP Routing Management Snapin Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-122	8.8	High	2024-12-10
CVE-2024-49081	Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-122	6.6	Medium	2024-12-10
CVE-2024-49079	Input Method Editor (IME) Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-416	7.8	High	2024-12-10
CVE-2024-49078	Windows Mobile Broadband Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-190	6.8	Medium	2024-12-10
CVE-2024-49077	Windows Mobile Broadband Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-191	6.8	Medium	2024-12-10
CVE-2024-49076	Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-287	7.8	High	2024-12-10
CVE-2024-49075	Windows Remote Desktop Services Denial of Service Vulnerability — Windows 10 Version 1809CWE-400	7.5	High	2024-12-10
CVE-2024-49072	Windows Task Scheduler Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-122	7.8	High	2024-12-10
CVE-2024-49065	Microsoft Office Remote Code Execution Vulnerability — Microsoft SharePoint Enterprise Server 2016CWE-125	5.5	Medium	2024-12-10
CVE-2024-49063	Microsoft/Muzic Remote Code Execution Vulnerability — MuzicCWE-502	8.4	High	2024-12-10
CVE-2024-49062	Microsoft SharePoint Information Disclosure Vulnerability — Microsoft SharePoint Enterprise Server 2016CWE-23	6.5	Medium	2024-12-10
CVE-2024-43600	Microsoft Office Elevation of Privilege Vulnerability — Microsoft Office 2016CWE-284	7.8	High	2024-12-10
CVE-2024-49142	Microsoft Access Remote Code Execution Vulnerability — Microsoft Office 2019CWE-416	7.8	High	2024-12-10
CVE-2024-49132	Windows Remote Desktop Services Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-591	8.1	High	2024-12-10
CVE-2024-49129	Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability — Windows Server 2019CWE-400	7.5	High	2024-12-10
CVE-2024-49126	Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-416	8.1	High	2024-12-10
CVE-2024-49125	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability — Windows Server 2019CWE-122	8.8	High	2024-12-10
CVE-2024-49124	Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-362	8.1	High	2024-12-10

This page lists every published CVE security advisory associated with Microsoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

Microsoft — Vulnerabilities & Security Advisories 8419