FlagThis

CyberSecurity updates
Updated: 2024-11-22 00:42:05 Pacfic
msrc.microsoft.com
Microsoft Patches Two Exploited Zero-Days: CVE-2024-43573 and CVE-2024-43572 - 7d
Read more: msrc.microsoft.com

Microsoft released patches for 117 security vulnerabilities in its October 2024 Patch Tuesday update, including two zero-days that were actively being exploited in the wild. CVE-2024-43573, a spoofing bug affecting the Windows MSHTML Platform, and CVE-2024-43572, a remote code execution flaw in the Microsoft Management Console (MMC), are both critical vulnerabilities that could allow attackers to gain control of affected systems. Organizations are urged to apply these patches as soon as possible to mitigate the risk.

References:
  • malware.news - Microsoft Releases October 2024 Security Updates - 13d
  • www.cisa.gov - Microsoft Releases October 2024 Security Updates - 13d
  • securityonline.info - Microsoft’s October 2024 Patch Tuesday: Zero-Day Exploits and Critical Vulnerabilities Patched - 12d
  • www.cisa.gov - Microsoft Releases October 2024 Security Updates - 12d
  • malware.news - Largest Patch Tuesday since July includes two exploited in the wild, three critical vulnerabilities - 12d
  • malware.news - This article discusses the October 2024 Patch Tuesday updates, highlighting the critical vulnerabilities addressed, including the two actively exploited zero-days. It also emphasizes the need for orga - 12d
  • www.jpcert.or.jp - Security Alert: Microsoft Releases October 2024 Security Updates - 12d
  • socradar.io - SOCRadar article analyzing the vulnerabilities patched in Microsoft's October 2024 Patch Tuesday updates. - 12d
  • malware.news - Actively exploited Microsoft Management Console bug fixed in October Patch Tuesday - 12d
  • www.scworld.com - Actively exploited Microsoft Management Console bug fixed in October Patch Tuesday - 12d
  • cyberscoop.com - Microsoft offers updates on 117 vulnerabilities on Patch Tuesday - 11d
  • Arctic Wolf - Microsoft Patch Tuesday – October 2024: Critical and Exploited Vulnerabilities - 9d
  • @feeds - Microsoft October update patches two zero-day vulnerabilities it says are being actively exploited - 9d
  • www.csoonline.com - Microsoft October update patches two zero-day vulnerabilities it says are being actively exploited - 9d
  • ciso2ciso.com - Microsoft Issues Security Update Fixing 118 Flaws, Two Actively Exploited in the Wild – Source:thehackernews.com - 7d
  • @jos1264 - Microsoft Issues Security Update Fixing 118 Flaws, Two Actively Exploited in the Wild – Source:thehackernews.com - 7d
  • Help Net Security - Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572) For October - 7d
  • All CISA Advisories - CISA adds this vulnerability to its Known Exploited Vulnerabilities Catalog. - 6d

Classification:

This site is an experimental news aggregator using feeds I personally follow. You can reach me at Bluesky if you have feedback or comments.