...
Background generated by AI. Design by Skip Barker.

Patch Tuesday 2024-11-12

posted: Nov. 12, 2024 #patches #news

That time again folks. This months Patch Tuesday addressed 89 vulnerabilities, 4 of those were Zero-Day and 4 were Critical.

Zero-Day Vulnerabilities

  1. CVE-2024-43451: NTLM Hash Disclosure Spoofing Vulnerability.
  2. CVE-2024-49039: Windows Task Scheduler Elevation of Privilege Vulnerability.
  3. CVE-2024-49040: Microsoft Exchange Server Spoofing Vulnerability.
  4. CVE-2024-49019: Active Directory Certificate Services Elevation of Privilege Vulnerability.

Critical Vulnerabilities

  1. CVE-2024-43498: .NET and Visual Studio Type Confusion Vulnerability.
  2. CVE-2024-43625: Windows VMSwitch Use After Free Vulnerability.
  3. CVE-2024-43639: Windows Kerberos Remote Code Execution Vulnerability.
  4. CVE-2024-49056: Airlift.microsoft.com Authentication Bypass Vulnerability.

Other Notable Vulnerabilities

  • CVE-2024-43602: Azure CycleCloud Remote Code Execution Vulnerability.
  • CVE-2024-49018: SQL Server Native Client Remote Code Execution Vulnerability.

2024. Skip Barker - All rights reserved.