Jump to content

Microsoft's October Patch Tuesday Fixes 118 Flaws, Including 5 Zero-Days

tech.guru
By tech.guru
in Tech News
 Share
Posted

Summary

Microsoft's October 2024 Patch Tuesday is here, bringing security updates for 118 vulnerabilities, including 5 publicly disclosed zero-day vulnerabilities, with two of them being actively exploited.

 

Quotes

Quote

Here’s a breakdown of the vulnerabilities by type:

 

  • 28 Elevation of Privilege vulnerabilities
  • 7 Security Feature Bypass vulnerabilities
  • 43 Remote Code Execution vulnerabilities
  • 6 Information Disclosure vulnerabilities
  • 26 Denial of Service vulnerabilities
  • 7 Spoofing vulnerabilities

 

My thoughts

Two vulnerabilities are confirmed to be actively exploited by cyber criminals and is critical that they are patched immediately.

              CVE-2024-43572 - Microsoft Management Console (MMC) Remote Code Execution Vulnerability, an oft-targeted component of the Windows operating system.

              The flaw carries a CVSS severity score of 7.8/10

             

            CVE-2024-43573 - Windows MSHTML Platform Spoofing Vulnerability

             

 

Sources

https://msrc.microsoft.com/update-guide/releaseNote/2024-Oct

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Tech News

×