Microsoft Patch Tuesday

Published On: March 12, 2024Categories: Cyber Alerts

In today’s SensCy Cyber Brief, your SensCy team reviewed Microsoft’s latest series of patches released on Tuesday, February 13, 2023. This month Microsoft fixes fixes 60 flaws.

What is Patch Tuesday?
Patch Tuesday is Microsoft’s initiative to release new security fixes for the Windows operating system and any other Microsoft software on a monthly basis. Your SensCy team will monitor such releases and provide you with our observations and recommendations.

Why is it important?
This month’s patch Tuesday is critical because it fixes critical vulnerabilities. The SensCy team recommends Microsoft users install those patches immediately.

This month’s patch Tuesday fixes two two critical vulnerabilities: Hyper-V remote code execution and denial of service flaws. Here are some vulnerabilities that will impact the most users.

CVE2024-26199, a vulnerability in Office,”Any authenticated user could trigger this vulnerability. It does not require admin or other elevated privileges,” explains Microsoft.

CVE-2024-20671, a vulnerability in Microsoft Defender. According to Microsoft, “An authenticated attacker who successfully exploited this vulnerability could prevent Microsoft Defender from starting.”

In addition to the zero-day fix, Microsoft is also fixing 74 vulnerabilities. Here is a breakdown of each vulnerability category:

  • 24 Elevation of Privilege Vulnerability
  • 18 Remote Code Execution Vulnerabilities
  • 6 Denial of Service Vulnerabilities
  • 6 Information Disclosure Vulnerabilities
  • 3 Security Feature Bypass Vulnerabilities
  • 2 Spoofing Vulnerabilities

For more information on vulnerabilities and the system that it affects, please refer to the full report from Microsoft linked here.

 

Related Posts

  • April 19, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Alert, your SensCy team is reviewing latest disclosure of vulnerabilities by WordPress. There were 202 vulnerabilities discovered, including 185 WordPress plugin [...]

  • April 18, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Alert, your SensCy team recommends Google Chrome Browser users to install the new Chrome Version 124 immediately. The new update patches [...]

  • April 10, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Brief, your SensCy team reviewed Adobe latest release of security updates. We recommend installing those updates immediately if you are using [...]