Microsoft Issues Patches for 79 Flaws, Including 3 Actively Exploited Windows Flaws


Microsoft has released patches for 79 security flaws in its September 2024 Patch Tuesday update, including three actively exploited Windows vulnerabilities. The update addresses seven Critical, 71 Important, and one Moderate vulnerability, along with 26 flaws in the Edge browser. Among the actively exploited flaws are a Windows Installer Elevation of Privilege vulnerability (CVE-2024-38014), a Mark-of-the-Web bypass (CVE-2024-38217), and a Microsoft Publisher bypass (CVE-2024-38226). Additionally, a Windows Update Remote Code Execution vulnerability (CVE-2024-43491) has been flagged, though exploitation of this specific flaw has not been detected.

Read More


thumb-image

Solutions