Microsoft has delivered 117 patches this Patch Tuesday, addressing numerous vulnerabilities, including two under active exploitation, notably a critical remote code execution flaw rated at 7.8.
CVE-2024-43572, affecting multiple versions of Windows, allows unauthorized local attackers to execute code through untrusted Microsoft Saved Console files, posing severe risks.
The second exploited flaw, CVE-2024-43573, is rated lower but still poses a risk through spoofing in MSHTML, affecting various Windows versions despite Internet Explorer's discontinuation.
Additionally, several serious vulnerabilities in components like curl and Winlogon have been patched, showcasing the ongoing need for vigilance against security threats.
Collection
[
|
...
]