The May 2024 Patch Tuesday Analysis by VERT highlights Microsoft's security updates, including vulnerabilities like security feature bypass in MSHTML, DWM vulnerability exploited in QakBot, and a Visual Studio 2022 denial of service issue. Microsoft reports some vulnerabilities with 'Exploitation Detected' while others with 'Exploitation Less Likely.' The breakdown of CVEs by tag reveals various vulnerabilities across different Microsoft products, signaling the importance of staying vigilant with patch updates and verifying the source of Office documents before opening
https://www.tripwire.com/state-of-security/vert-threat-alert-may-2024-patch-tuesday-analysis