Description:
Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components. The list of security updates can be found at:
https://msrc.microsoft.com/update-guide/releaseNote/2024-Sep
Reports indicated that the vulnerabilities (CVE-2024-38014, CVE-2024-38217, CVE-2024-38226 and CVE-2024-43491) in Microsoft Windows and Server and Microsoft Office are being exploited in the wild. The technical details of security feature bypass vulnerability (CVE-2024-38217) in Microsoft Windows and Server were publicly disclosed. In addition, the spoofing vulnerability (CVE-2024-43461) in Microsoft Windows and Server is also at a high risk of exploitation. System administrators and users are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.
Affected Systems:
- Microsoft Windows 10, 11
- Microsoft Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016, 2019, 2022, 2022, 23H2 Edition
- Microsoft Office 2019, LTSC 2021, LTSC for Mac 2021
- Microsoft Office for Android
- Microsoft Office for Universal
- Microsoft Office Online Server
- Microsoft 365 Apps for Enterprise
- Microsoft Dynamics 365 (on-premises) version 9.1
- Microsoft Dynamics 365 Business Central 2023 Release Wave 1, 2023 Release Wave 2, 2024 Release Wave 1
- Microsoft Excel 2016
- Microsoft Publisher 2016
- Microsoft SharePoint Enterprise Server 2016
- Microsoft SharePoint Server 2019, Subscription Edition
- Microsoft SQL Server 2016, 2017, 2019, 2022
- Microsoft Visio 2016
- Microsoft AutoUpdate for Mac
- Outlook for iOS
- Power Automate for Desktop
Impact:
Successful exploitation of the vulnerabilities could lead to remote code execution, denial of service, elevation of privilege, information disclosure, security feature bypass or spoofing on an affected system.
Recommendation:
Patches for affected systems are available from the Windows Update / Microsoft Update Catalog. System administrators and users of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.
More Information:
- https://msrc.microsoft.com/update-guide/releaseNote/2024-Sep
- https://www.hkcert.org/security-bulletin/microsoft-monthly-security-update-september-2024
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21416
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26186
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26191
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-30073
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37335
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37337 (to CVE-2024-37342)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37965 (to CVE-2024-37966)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37980
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38014
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38018
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38045 (to CVE-2024-38046)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38119
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38217
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38225 (to CVE-2024-38228)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38230 (to CVE-2024-38250)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38252 (to CVE-2024-38254)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38256 (to CVE-2024-38260)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38263
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43454 (to CVE-2024-43455)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43457 (to CVE-2024-43458)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43461
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43463 (to CVE-2024-43467)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43474 (to CVE-2024-43476)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43479
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43482
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43487
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43491 (to CVE-2024-43492)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43495