11 December 2024

Microsoft’s December 2024 Patch Tuesday fixes over 70 flaws, one actively exploited


Microsoft’s December 2024 Patch Tuesday fixes over 70 flaws, one actively exploited

Microsoft has released its final Patch Tuesday updates for 2024 addressing more than 70 security vulnerabilities across its software ecosystem, including a high-risk vulnerability exploited in the wild.

Tracked as CVE-2024-49138, the flaw affects the Windows Common Log File System (CLFS) Driver and can be abused by a local user for code execution with SYSTEM privileges.

CVE-2024-49138 marks the fifth actively exploited CLFS privilege escalation vulnerability since 2022. Previous patched flaws include

CVE-2022-24521, CVE-2022-37969, CVE-2023-23376, and CVE-2023-28252.

In addition to CVE-2024-49138, Microsoft has addressed a slew of high-risk vulnerabilities across various software, including Microsoft Access, Microsoft Defender for Endpoint on Android, Microsoft LDAP, Microsoft Excel, Microsoft SharePoint, Microsoft LSASS, Microsoft IME, MSMQ, Microsoft Windows Remote Desktop Services, and Microsoft RRAS.

Back to the list

Latest Posts

Cybersecurity Week in Review: January 24, 2025

Cybersecurity Week in Review: January 24, 2025

In brief: SonicWall SMA zero-day exploited in attacks, hackers are exploiting older Ivanti flaws, and more.
24 January 2025
AIRASHI DDoS botnet exploits a zero-day vulnerability in cnPilot routers

AIRASHI DDoS botnet exploits a zero-day vulnerability in cnPilot routers

The attacks have been active since June 2024.
23 January 2025
SonicWall SMA zero-day exploited in attacks

SonicWall SMA zero-day exploited in attacks

SonicWall has released a patch in version 12.4.3-02854 and higher versions to address the issue.
23 January 2025