Microsoft has issued fixes for over 70 security weaknesses in its products, with three currently exploited vulnerabilities posing significant risks, particularly in Windows and Office.
CVE-2024-38014, rated at 7.8 CVSS, allows privilege escalation in Windows Installer, which could potentially grant full SYSTEM privileges to an attacker.
One severe issue, CVE-2024-43491, rated at 9.8 CVSS, caused Windows 10 version 1507 to undo previous updates silently, exposing the system to vulnerabilities.
The range of vulnerabilities highlights the importance of constant vigilance and prompt updates by users of Microsoft products, as threats continue to evolve rapidly.
[
Collection
]
[
|
...
]