Microsoft has updated an Xbox vulnerability, despite initially telling the researcher that it was not a security concern.
The vulnerability is identified as CVE-2024-2891 and affects Xbox Gaming Services. According to Microsoft, it is of ‘important’ severity and can be readily abused by a local attacker with limited rights to elevate permissions to the System. “An attacker must have local access to the targeted machine and must be able to create folders and performance traces on the machine, with restricted privileges that normal users have by default,” Microsoft said in its security alert.
Customers have been told that app package versions 19.87.13001.0 will patch the issue later. The patch should be given to users who have enabled automatic updates.
Read More: Microsoft Patches Xbox Vulnerability Following Public Disclosure
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.