Unrated severityNVD Advisory· Published Dec 12, 2024· Updated May 13, 2025
Microsoft Update Catalog Elevation of Privilege Vulnerability
CVE-2024-49147
Description
Deserialization of untrusted data in Microsoft Update Catalog allows an unauthorized attacker to elevate privileges on the website’s webserver.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: N/A
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49147mitrevendor-advisory
News mentions
0No linked articles in our index yet.