Microsoft’s Security Slip-Up: Four Vulnerabilities, One Wild Exploit!
Microsoft has patched four security bugs, including a wild-exploited AI flaw. CVE-2024-49035 allows unauthorized privilege escalation on partner.microsoft.com. Fixes for these vulnerabilities are rolling out automatically. Just a friendly reminder to update your Dynamics 365 Sales apps—because who doesn’t love a little unexpected malware surprise with their morning coffee?
Hot Take:
Microsoft has once again proven that even the biggest tech giants aren’t immune to the occasional “oopsie” in their code. But fear not, they’ve squashed the bugs faster than you can say “artificial intelligence.” Just remember, when it comes to security, it’s always better to be ‘patched’ than sorry!
Key Points:
- Microsoft addressed four security vulnerabilities affecting AI, cloud, ERP, and Partner Center offerings.
- The most critical flaw is CVE-2024-49035, a privilege escalation vulnerability with a CVSS score of 8.7.
- Fixes for the vulnerabilities are being rolled out automatically, with some requiring user action.
- The vulnerabilities include issues in Copilot Studio, Microsoft Azure PolicyWatch, and Microsoft Dynamics 365 Sales.
- Users should update Dynamics 365 Sales apps to the latest version to protect against a spoofing vulnerability.
Already a member? Log in here