Microsoft has released updates addressing 89 security vulnerabilities, including two zero-day vulnerabilities and two publicly disclosed flaws. Key vulnerabilities fixed include CVE-2024-49039 in Windows Task Scheduler and CVE-2024-43451 related to NTLMv2 hashes, posing significant risks of privilege escalation and pass-the-hash attacks. Other critical patches address issues in Active Directory Certificate Services, Microsoft Exchange Server, Windows Kerberos, .NET, and SQL Server.
Sort: