I’M UNDER A CYBER ATTACK

Alert

Alert 2024-47: Multiple Critical Vulnerabilities in Windows (October 2024)

In recent days, Microsoft has released a total of 118 vulnerabilities, including 5 considered Zero-Days: CVE-2024-42827, CVE-2024-42317, CVE-2024-43205, CVE-2024-43341, and CVE-2024-43292, which are reported to be actively exploited. These vulnerabilities affect several products such as Microsoft Exchange Server, Microsoft Office, and Windows Kernel.

Of the vulnerabilities published by Microsoft in its Monthly Patch Tuesday (Microsoft October 2024 Patch Tuesday fixes), 10 were classified as critical, several of them related to remote code execution (RCE).

You can consult the full list of CVEs published by Microsoft at the following link:
https://msrc.microsoft.com/update-guide/releaseNote/2024-Oct

We recommend applying the necessary updates as soon as possible to mitigate the risks associated with these vulnerabilities, especially those that are actively being exploited.

Download PDF

WE’RE HERE TO HELP

Are you under a cyber attack?

Report it here

get the latest alerts in your inbox

Subscribe to our newsletter

We are a a group of highly trained professionals based in R&D with advanced technical knowledge and experience in the detection, analysis, containment, and recovery of security incidents.

We are a CSIRT, we are Cybolt.

I’M UNDER A CYBER ATTACK

Explore

Services

Stay updated

© 2024. Beacon Lab CSIRT, Privacy Policy

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.