9 Critical CVEs and 1 CVE currently under attack on Patch Tuesday.

  /     /     /  
Publicated : 08/12/2024   Category : security


News: Patch Tuesday Reveals 9 Critical CVEs & 1 Under Attack

Microsofts Patch Tuesday has arrived once again, bringing with it a slew of updates to address security vulnerabilities in their software. This months release includes fixes for a total of 9 Critical CVEs, as well as one vulnerability that is currently under active attack by threat actors. Lets take a closer look at some of the key highlights from this months security bulletin.

What are the Critical CVEs addressed in this months Patch Tuesday?

Microsoft has patched a total of 9 Critical CVEs in this months release. These vulnerabilities cover a wide range of products, including Windows, Office, Edge, and more. The severity of these vulnerabilities can range from remote code execution to privilege escalation, making it crucial for users to apply the necessary updates as soon as possible.

Which vulnerability is currently under attack by threat actors?

One vulnerability addressed in this months Patch Tuesday release is currently being exploited in the wild by threat actors. Identified as CVE-2021-26424, this vulnerability affects the Windows Kernel and could allow an attacker to execute arbitrary code with elevated privileges. Microsoft has issued a patch for this vulnerability, urging users to update their systems to avoid falling victim to potential attacks.

What steps should users take to protect their systems from security threats?

As always, Microsoft recommends that users install the latest security updates as soon as they become available. This includes patches for both the Critical CVEs and the vulnerability under active attack. In addition, users should remain vigilant for phishing emails and other social engineering tactics used by attackers to exploit vulnerabilities in software. By staying up to date on security best practices and applying timely updates, users can help safeguard their systems from potential threats.

People Also Ask:

  • How often does Microsoft release Patch Tuesday updates?

    Microsoft releases Patch Tuesday updates on the second Tuesday of each month. This regular cadence allows users to plan and prepare for the latest security updates ahead of time.

  • Can I delay installing Patch Tuesday updates?

    While it is not recommended to delay installing Patch Tuesday updates, users can choose to defer updates for a limited period in order to ensure compatibility with their systems. However, it is crucial to apply updates in a timely manner to avoid falling victim to known vulnerabilities.

  • What is the significance of Critical CVEs in security bulletins?

    Critical CVEs are security vulnerabilities that have the highest severity rating assigned by Microsoft. These vulnerabilities pose a significant risk to users systems and should be addressed promptly to prevent potential exploitation by threat actors.

    Overall, this months Patch Tuesday release highlights the importance of staying proactive in applying security updates to protect against evolving cyber threats. By taking the necessary precautions and remaining informed about the latest security vulnerabilities, users can help ensure the safety and security of their digital environments.


    Last News

    ▸ Debunking Machine Learning in Security. ◂
    Discovered: 23/12/2024
    Category: security

    ▸ Researchers create BlackForest to gather, link threat data. ◂
    Discovered: 23/12/2024
    Category: security

    ▸ Travel agency fined £150,000 for breaking Data Protection Act. ◂
    Discovered: 23/12/2024
    Category: security


    Cyber Security Categories
    Google Dorks Database
    Exploits Vulnerability
    Exploit Shellcodes

    CVE List
    Tools/Apps
    News/Aarticles

    Phishing Database
    Deepfake Detection
    Trends/Statistics & Live Infos



    Tags:
    9 Critical CVEs and 1 CVE currently under attack on Patch Tuesday.