Ouch!
Microsoft are not having a good time right now, and this is a zero-day, zero-click vulnerability and it’s pretty… serious.
I’ll let Dave explain it.
Here’s the POC exploit:
https://github.com/ynwarcs/CVE-2024-38063
The patch for this should be available in the last update from Microsoft,
so please have your machines updated!