Numerous applied sciences, together with Microsoft Workplace, cURL, PHP, and Home windows executables that not directly use susceptible command line instruments, akin to pip, composer, and git, are all probably susceptible.
For instance, the CVE-2024-4577 challenge in PHP stems from this class of vulnerability. Builders have revealed instructed mitigations however the flaw stays below analysis and unresolved.
Patches have nonetheless been developed to deal with CVE-2024-49026 — a Microsoft Excel vulnerability. The whole lot else stays susceptible, Orange Tsai advised CSO.
