March 2024 Patch Tuesday: Microsoft fixes critical bugs in Windows Hyper-V>
Help Net Security – Zeljka Zorz
Microsoft released fixes for 59 vulnerabilities, none of which are currently known to be publicly exploited.
Two critical vulnerabilities in Windows Hyper-V were patched – CVE-2024-21407 allowing remote code execution via guest-to-host escape, and CVE-2024-21408 a denial of service flaw.
CVE-2024-26198 is an unauthenticated remote code execution flaw in Microsoft Exchange Server that requires prioritized patching.
CVE-2024-21400 in Azure Kubernetes Service Confidential Containers could allow credential theft and unauthorized resource access.
Only 6 vulnerabilities are considered more likely to be exploited, mostly elevation of privilege flaws like CVE-2024-26182 in the Windows Kernel.
CVE-2024-21390 in Microsoft Authenticator app could allow multi-factor authentication code theft if an attacker already has device access.
While none are known exploits yet, admins should prioritize patching critical vulnerabilities like the Hyper-V, Exchange, and Azure flaws based on risk.
Microsoft initially didn’t disclose that last month’s CVE-2024-21338 kernel vulnerability was being actively exploited until later.
So close monitoring is needed in case any of March’s vulnerabilities turn out to be under active attack as well.
Link: https://www.helpnetsecurity.com/2024/03/12/march-2024-patch-tuesday/