Microsoft has addressed two security vulnerabilities impacting Windows NT LAN Manager and Task Scheduler, marking them as actively exploited, amid 90 total security bugs.
The severity of the 90 flaws includes four rated Critical, 85 Important, and one Moderate, with remote code execution being a focal issue among them.
CVE-2024-43451 discloses a user's NTLMv2 hash to attackers, allowing them to authenticate as the user, highlighting increased exploitation of such vulnerabilities.
Attackers are focusing on zero-day vulnerabilities that reveal NTLMv2 hashes, enabling them to authenticate and potentially move laterally within networks.
Collection
[
|
...
]