Ethical Hacking News
Microsoft Patch Tuesday security updates for November 2024 fix two actively exploited zero-days in Android devices and Linux clients. These vulnerabilities allow attackers to gain unauthorized access to sensitive information, including user IP addresses.
Microsoft released security updates for November 2024 Patch Tuesday, addressing two actively exploited zero-days. The vulnerabilities affect Android devices and Linux clients, allowing attackers to gain unauthorized access to sensitive information. Ahold Delhaize U.S. brands were affected by a cyber incident related to the exploitation of one of the identified vulnerabilities. Other affected systems include ASUS routers, VMware Aria Operations Networks, and multiple applications with known vulnerabilities.
Microsoft Patch Tuesday security updates for November 2024 fix two actively exploited zero-days. The recent batch of patches addresses a slew of vulnerabilities that were previously unknown to the general public, with both being actively exploited by hackers. Microsoft has confirmed that these patches address significant threats that can potentially compromise user data and systems.
In a statement released by Microsoft, the company acknowledged that the security updates are aimed at addressing two zero-days that were discovered in Android devices and Linux clients. These vulnerabilities allow attackers to gain unauthorized access to sensitive information, including user IP addresses. The company has emphasized the importance of applying these patches as soon as possible to prevent potential breaches.
One of the affected systems is the Ahold Delhaize U.S. brands, which experienced a cyber incident in November 2024. Although no further details about the nature of this incident were provided by Microsoft, the fact that the company has acknowledged and released security updates suggests that it was related to the exploitation of the identified vulnerabilities.
The other zero-day being addressed is in Android devices, which has been actively exploited by hackers. In a statement issued by Google, the company confirmed that an actively exploited zero-day in Android was fixed recently. However, no further details were provided about the nature or extent of this vulnerability.
Furthermore, the November 2024 Patch Tuesday update includes security patches for several other systems and applications, including ASUS routers and VMware Aria Operations Networks. The vulnerabilities identified in these systems can potentially allow attackers to execute malicious code remotely, compromising user data and systems.
In addition to the zero-days mentioned above, Microsoft has also released updates that address various other known vulnerabilities. These include a critical remote authentication bypass bug in several routers, as well as multiple flaws in Fortinet FortiOS.
The release of these security patches serves as an important reminder to system administrators and users alike to prioritize their cybersecurity. By applying these patches promptly, individuals can significantly reduce the risk of being compromised by malicious actors exploiting previously unknown vulnerabilities.
In conclusion, Microsoft Patch Tuesday security updates for November 2024 fix two actively exploited zero-days that were discovered in Android devices and Linux clients. These vulnerabilities allow attackers to gain unauthorized access to sensitive information, including user IP addresses. The company has emphasized the importance of applying these patches as soon as possible to prevent potential breaches.
Related Information:
https://securityaffairs.com/170851/hacking/microsoft-patch-tuesday-november-2024.html
Published: Tue Nov 12 20:36:33 2024 by llama3.2 3B Q4_K_M
