Security Alert: Urgent Microsoft Windows Patches
Date:
2024-08-14 14:51:00
Status:
Closed
Brief Description:
Zero-day vulnerabilities in the Microsoft Windows operating system may allow privilege escalation and code execution. Patch now.
Current Status:
N/A
Services Affected:
Certified Desktop
Subsites Affected:
Certified Desktop
Full Description:
Microsoft’s August 2024 updates, released on Tuesday, August 13, fix multiple zero-day vulnerabilities in Microsoft Windows desktop and server operating systems under known exploitation. An additional critical vulnerability in the Windows TCP/IP networking stack allows an unauthenticated attacker to remotely execute code with SYSTEM privileges via crafted IPv6 packets, requiring only inbound network access to a vulnerable computer. Patch now.
Certified Desktop customers:
Updates will be made available today, Wednesday, August 14 with an installation deadline of 4:00 pm on Wednesday, August 21.
Users who do not have a managed computer should apply Windows updates as soon as possible. See “Microsoft – Update Windows” in the references below.
References:
Bleeping Computer: https://www.bleepingcomputer.com/news/microsoft/microsoft-august-2024-patch-tuesday-fixes-9-zero-days-6-exploited/
Certified Desktop customers:
Updates will be made available today, Wednesday, August 14 with an installation deadline of 4:00 pm on Wednesday, August 21.
Users who do not have a managed computer should apply Windows updates as soon as possible. See “Microsoft – Update Windows” in the references below.
References:
Bleeping Computer: https://www.bleepingcomputer.com/news/microsoft/microsoft-august-2024-patch-tuesday-fixes-9-zero-days-6-exploited/
Microsoft – MSRC – CVE-2024-38063: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38063
Microsoft – Update Windows: https://support.microsoft.com/en-us/windows/update-windows-3c5ae7fc-9fb6-9af1-1984-b5e0412c556a
Enter a full description of the incident. This will appear in the "see all information" view of this alert.
CIT TDX ID: