Teejay Boris, Tech Times

Microsoft patch Tuesday update has fixed a security bug, which is currently being exploited by hackers on both Windows 11 and 10.

The massive update also patches more than a hundred security vulnerabilities before cyberattackers start targeting them.

Microsoft Warns Users of Fake Ransomware Spreading Data-Wiping Malware
(Photo : Drew Angerer/Getty Images)
The Microsoft logo is illuminated on a wall during a Microsoft launch event to introduce the new Microsoft Surface laptop and Windows 10 S operating system, May 2, 2017 in New York City. The Windows 10 S operating system is geared toward the education market and is Microsoft's answer to Google's Chrome OS.

Microsoft Patch Tuesday and Security Bugs

As per a recent report by The Register, the latest April Patch Tuesday is a massive update that killed more than 100 security issues, including a single one that already attracted cyberattackers.

The latest update on Windows 10 and 11 has patched 238 potential security vulnerabilities. It is worth noting that cybersecurity experts deemed ten of these numerous bugs as critical remote code execution or RCE vulnerabilities.

One of the most notable offerings of the latest Windows patch is the fix for an actively exploited security bug.

Microsoft Patch Tuesday Fixes a Currently Exploited Security Bug
(Photo : NOEL CELIS/AFP via Getty Images)
The Microsoft logo is seen at its local headquarters in Beijing on July 20, 2021, the day after the US accused Beijing of carrying out cyber attack on Microsoft and charged four Chinese nationals over "malicious" hack in March.

The Register highlighted in its report that cybersecurity experts from the National Security Agency and CrowdStrick previously reported an actively exploited bug to the Redmond tech firm.

The said bug, known as CVE-2022-24521, carries a CVSS score of 7.8, making it essentially an "important" security issue. The actively exploited vulnerability takes over PCs by gaining admin privileges.

On top of that, the Tuesday Patch also exterminated other potential vulnerabilities that are more dangerous or critical than the ones that hackers have been actively exploiting already.

It includes an RCE vulnerability known as CVE-2022-26809. Not to mention that it also removed two Windows Network File System RCE bugs, namely CVE-2022-24497 and CVE-2022-24491. All three issues carry a highly critical 9.8 CVSS score.

Read Also: Microsoft Emergency Patch Update Debuts to Combat Exploitation of PrintNightmare Zero-Day Vulnerability

Microsoft Patch Tuesday: Windows 10, Windows 11

The latest Patch Tuesday update includes various Windows 10 builds, namely the 19042.1645, 19044.1645 (KB5012599), and 19043.164, according to a news story by Windows Central.

On the other hand, the latest Microsoft update also rolled out Windows 11 OS Build 22000.613 (KB5012592).

Microsoft said that the new update for Windows 11 "contains miscellaneous security improvements to internal OS functionality."

Apart from the security fixes on Windows 11, Microsoft acknowledges a disc recovery issue on the status report of the latest OS Build.

The Redmond-based tech giant admitted that the recovery discs created by the Windows 7 built-in app known as Backup and Restore have been affected by a Jan 11, 2022 update.

That said, Microsoft vows to settle the disc recovery mess, which should be readily available in an upcoming update.

Related Article: Microsoft Edge 100 Update Boosts Performance with NEW Sleeping Tabs | Here's How it Works

This article is owned by Tech Times

Written by Teejay Boris

ⓒ 2024 TECHTIMES.com All rights reserved. Do not reproduce without permission.
Tags: Microsoft Patch Tuesday Microsoft Exploited Security Bug 100 Vulnerabilities
Join the Discussion