CVE-2024-49035

Name of the Vulnerable Software and Affected Versions Microsoft Partner Center (affected versions not specified)

Description The issue is related to improper access control, allowing an unauthenticated attacker to elevate privileges over a network. This vulnerability has been exploited in the wild, posing a serious security risk. The estimated number of potentially affected devices worldwide is not specified. Real-world incidents where this issue was exploited have been reported, but details are not provided. Technical details about exploitation include the ability to escalate privileges, potentially leading to account takeover.

Recommendations As a temporary workaround, consider restricting access to sensitive areas of the Microsoft Partner Center until a patch is available. Apply patches immediately once available from Microsoft for the Microsoft Partner Center. Limit user privileges to reduce the risk of privilege escalation. Monitor networks for suspicious activities to detect potential exploitation. Update systems regularly to counter cyber threats. At the moment, there is no information about a newer version that contains a fix for this vulnerability.