Fortra VM will include the Microsoft Patch Tuesday checks in the NIRV 4.42.0 and FVM Agent 2.7 releases.

  • Microsoft addressed 61 vulnerabilities in this release, including 1 rated as Critical and 27 Remote Code Execution vulnerabilities.
  • This release also includes fixes for CVE-2024-30040 and CVE-2024-30051 which are known to have been exploited in the wild.
    • Windows MSHTML Platform Security Feature Bypass Vulnerability (CVE-2024-30040)
      • A malicious actor would be required to trick a user into manipulating a crafted file in order to exploit this vulnerability which would result in code execution in the context of the user that interacted with the file.
    • Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)
      • This vulnerability could allow an attacker to escalate to SYSTEM privileges and has been observed being used by Qakbot and other malware.
CVE/AdvisoryTitleTagMicrosoft Severity RatingBase ScoreMicrosoft ImpactExploitedPublicly Disclosed
CVE-2024-32002CVE-2024-32002 Recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code ExecutionVisual StudioImportant9Remote Code ExecutionNoNo
CVE-2024-29996Windows Common Log File System Driver Elevation of Privilege VulnerabilityWindows Common Log File System DriverImportant7.8Elevation of PrivilegeNoNo
CVE-2024-29997Windows Mobile Broadband Driver Remote Code Execution VulnerabilityWindows Mobile BroadbandImportant6.8Remote Code ExecutionNoNo
CVE-2024-29998Windows Mobile Broadband Driver Remote Code Execution VulnerabilityWindows Mobile BroadbandImportant6.8Remote Code ExecutionNoNo
CVE-2024-29999Windows Mobile Broadband Driver Remote Code Execution VulnerabilityWindows Mobile BroadbandImportant6.8Remote Code ExecutionNoNo
CVE-2024-30000Windows Mobile Broadband Driver Remote Code Execution VulnerabilityWindows Mobile BroadbandImportant6.8Remote Code ExecutionNoNo
CVE-2024-30001Windows Mobile Broadband Driver Remote Code Execution VulnerabilityWindows Mobile BroadbandImportant6.8Remote Code ExecutionNoNo
CVE-2024-30002Windows Mobile Broadband Driver Remote Code Execution VulnerabilityWindows Mobile BroadbandImportant6.8Remote Code ExecutionNoNo
CVE-2024-30003Windows Mobile Broadband Driver Remote Code Execution VulnerabilityWindows Mobile BroadbandImportant6.8Remote Code ExecutionNoNo
CVE-2024-30004Windows Mobile Broadband Driver Remote Code Execution VulnerabilityWindows Mobile BroadbandImportant6.8Remote Code ExecutionNoNo
CVE-2024-30005Windows Mobile Broadband Driver Remote Code Execution VulnerabilityWindows Mobile BroadbandImportant6.8Remote Code ExecutionNoNo
CVE-2024-30006Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution VulnerabilityMicrosoft WDAC OLE DB provider for SQLImportant8.8Remote Code ExecutionNoNo
CVE-2024-30007Microsoft Brokering File System Elevation of Privilege VulnerabilityMicrosoft Brokering File SystemImportant8.8Elevation of PrivilegeNoNo
CVE-2024-30008Windows DWM Core Library Information Disclosure  VulnerabilityWindows DWM Core LibraryImportant5.5Information DisclosureNoNo
CVE-2024-30009Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityWindows Routing and Remote Access Service (RRAS)Important8.8Remote Code ExecutionNoNo
CVE-2024-30010Windows Hyper-V Remote Code Execution VulnerabilityWindows Hyper-VImportant8.8Remote Code ExecutionNoNo
CVE-2024-30011Windows Hyper-V Denial of Service VulnerabilityWindows Hyper-VImportant6.5Denial of ServiceNoNo
CVE-2024-30012Windows Mobile Broadband Driver Remote Code Execution VulnerabilityWindows Mobile BroadbandImportant6.8Remote Code ExecutionNoNo
CVE-2024-30014Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityWindows Routing and Remote Access Service (RRAS)Important7.5Remote Code ExecutionNoNo
CVE-2024-30015Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityWindows Routing and Remote Access Service (RRAS)Important7.5Remote Code ExecutionNoNo
CVE-2024-30016Windows Cryptographic Services Information Disclosure VulnerabilityWindows Cryptographic ServicesImportant5.5Information DisclosureNoNo
CVE-2024-30017Windows Hyper-V Remote Code Execution VulnerabilityWindows Hyper-VImportant8.8Remote Code ExecutionNoNo
CVE-2024-30018Windows Kernel Elevation of Privilege VulnerabilityWindows KernelImportant7.8Elevation of PrivilegeNoNo
CVE-2024-30019DHCP Server Service Denial of Service VulnerabilityWindows DHCP ServerImportant6.5Denial of ServiceNoNo
CVE-2024-30020Windows Cryptographic Services Remote Code Execution VulnerabilityWindows Cryptographic ServicesImportant8.1Remote Code ExecutionNoNo
CVE-2024-30021Windows Mobile Broadband Driver Remote Code Execution VulnerabilityWindows Mobile BroadbandImportant6.8Remote Code ExecutionNoNo
CVE-2024-30022Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityWindows Routing and Remote Access Service (RRAS)Important7.5Remote Code ExecutionNoNo
CVE-2024-30023Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityWindows Routing and Remote Access Service (RRAS)Important7.5Remote Code ExecutionNoNo
CVE-2024-30044Microsoft SharePoint Server Remote Code Execution VulnerabilityMicrosoft Office SharePointCritical8.8Remote Code ExecutionNoNo
CVE-2024-30050Windows Mark of the Web Security Feature Bypass VulnerabilityWindows Mark of the Web (MOTW)Moderate5.4Security Feature BypassNoNo
CVE-2024-30053Azure Migrate Cross-Site Scripting VulnerabilityAzure MigrateImportant6.5SpoofingNoNo
CVE-2024-30059Microsoft Intune for Android Mobile Application Management Tampering VulnerabilityMicrosoft IntuneImportant6.1TamperingNoNo
CVE-2024-26238Microsoft PLUGScheduler Scheduled Task Elevation of Privilege VulnerabilityWindows Task SchedulerImportant7.8Elevation of PrivilegeNoNo
CVE-2024-29994Microsoft Windows SCSI Class System File Elevation of Privilege VulnerabilityMicrosoft Windows SCSI Class System FileImportant7.8Elevation of PrivilegeNoNo
CVE-2024-30024Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityWindows Routing and Remote Access Service (RRAS)Important7.5Remote Code ExecutionNoNo
CVE-2024-30025Windows Common Log File System Driver Elevation of Privilege VulnerabilityWindows Common Log File System DriverImportant7.8Elevation of PrivilegeNoNo
CVE-2024-30027NTFS Elevation of Privilege VulnerabilityWindows NTFSImportant7.8Elevation of PrivilegeNoNo
CVE-2024-30028Win32k Elevation of Privilege VulnerabilityWindows Win32K – ICOMPImportant7.8Elevation of PrivilegeNoNo
CVE-2024-30029Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityWindows Routing and Remote Access Service (RRAS)Important7.5Remote Code ExecutionNoNo
CVE-2024-30030Win32k Elevation of Privilege VulnerabilityWindows Win32K – GRFXImportant7.8Elevation of PrivilegeNoNo
CVE-2024-30031Windows CNG Key Isolation Service Elevation of Privilege VulnerabilityWindows CNG Key Isolation ServiceImportant7.8Elevation of PrivilegeNoNo
CVE-2024-30032Windows DWM Core Library Elevation of Privilege VulnerabilityWindows DWM Core LibraryImportant7.8Elevation of PrivilegeNoNo
CVE-2024-30033Windows Search Service Elevation of Privilege VulnerabilityMicrosoft Windows Search ComponentImportant7Elevation of PrivilegeNoNo
CVE-2024-30034Windows Cloud Files Mini Filter Driver Information Disclosure VulnerabilityWindows Cloud Files Mini Filter DriverImportant5.5Information DisclosureNoNo
CVE-2024-30035Windows DWM Core Library Elevation of Privilege VulnerabilityWindows DWM Core LibraryImportant7.8Elevation of PrivilegeNoNo
CVE-2024-30036Windows Deployment Services Information Disclosure VulnerabilityWindows Deployment ServicesImportant6.5Information DisclosureNoNo
CVE-2024-30037Windows Common Log File System Driver Elevation of Privilege VulnerabilityWindows Common Log File System DriverImportant7.5Elevation of PrivilegeNoNo
CVE-2024-30038Win32k Elevation of Privilege VulnerabilityWindows Win32K – ICOMPImportant7.8Elevation of PrivilegeNoNo
CVE-2024-30039Windows Remote Access Connection Manager Information Disclosure VulnerabilityWindows Remote Access Connection ManagerImportant5.5Information DisclosureNoNo
CVE-2024-30040Windows MSHTML Platform Security Feature Bypass VulnerabilityWindows MSHTML PlatformImportant8.8Security Feature BypassYesNo
CVE-2024-30041Microsoft Bing Search Spoofing VulnerabilityMicrosoft BingImportant5.4SpoofingNoNo
CVE-2024-30042Microsoft Excel Remote Code Execution VulnerabilityMicrosoft Office ExcelImportant7.8Remote Code ExecutionNoNo
CVE-2024-30043Microsoft SharePoint Server Information Disclosure VulnerabilityMicrosoft Office SharePointImportant6.5Information DisclosureNoNo
CVE-2024-30045.NET and Visual Studio Remote Code Execution Vulnerability.NET and Visual StudioImportant6.3Remote Code ExecutionNoNo
CVE-2024-30046Visual Studio Denial of Service VulnerabilityVisual StudioImportant5.9Denial of ServiceNoYes
CVE-2024-30047Dynamics 365 Customer Insights Spoofing VulnerabilityMicrosoft Dynamics 365 Customer InsightsImportant7.6SpoofingNoNo
CVE-2024-30048Dynamics 365 Customer Insights Spoofing VulnerabilityMicrosoft Dynamics 365 Customer InsightsImportant7.6SpoofingNoNo
CVE-2024-30049Windows Win32 Kernel Subsystem Elevation of Privilege VulnerabilityWindows Win32K – ICOMPImportant7.8Elevation of PrivilegeNoNo
CVE-2024-30051Windows DWM Core Library Elevation of Privilege VulnerabilityWindows DWM Core LibraryImportant7.8Elevation of PrivilegeYesYes
CVE-2024-32004GitHub: CVE-2024-32004 Remote Code Execution while cloning special-crafted local repositoriesVisual StudioImportant8.1Remote Code ExecutionNoNo
CVE-2024-30054Microsoft Power BI Client JavaScript SDK Information Disclosure VulnerabilityPower BIImportant6.5Information DisclosureNoNo

Quickly Find and Fix Your Most At-Risk Weaknesses

Watch this demo to see how Frontline VM can help.

Watch now

Mieng Lim

Vice President, Product Management
View Profile