Security & Threat Updates – June 2024:

Share This Article

Microsoft addressed 49 Common Vulnerabilities and Exposures (CVE’s) this month, one which was marked as a zero-day vulnerability.  The most critical Common Vulnerabilities and Exposures (CVE’s) are noted below:

Microsoft Vulnerabilities:

Windows Zero-Days:

  • CVE-2023-50868 – MITRE: CVE-2023-50868 NSEC3 closest encloser proof can exhaust CPU

Other Critical CVE’s:

  • CVE-2024-30080 – Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
  • CVE-2024-30103 – Microsoft Outlook Remote Code Execution Vulnerability
  • CVE-2024-30078 – Windows Wi-Fi Driver Remote Code Execution Vulnerability

3rd Party Critical CVE’s:

Adobe Products:

ARM:

Cisco:

Google Chrome:

  • Versions 126.0.6478.56/57 were released for Windows & Apple and 126.0.6478.54 for Linux on June 11th.
  • This update includes 21 security fixes
  • Chrome Release: June 11th 2024

PHP

VMWare

About FortressSRM Cyber Hygiene Offering:

Software vulnerabilities are one of the top cyber-attack vectors and one in three breaches are the result of vulnerabilities that were known about and should have been already patched1

Keeping operating systems and application software patched and secure is time consuming and tedious – an internal IT resource nightmare. Fortress SRM’s Guardian Managed Patching with Monitoring Service delivers automated, high-efficacy (97%+) updates to Microsoft and over 80 third-party software, ensuring efficient patch deployment to every device, whether on or off network. This includes the deployment of critical updates, security updates, feature updates, operating system upgrades, key Windows security setting and configurations. 

The Fortress SRM real-time reporting console includes current patch levels of devices and gives the Client total visibility into what patch related activities have been performed, while real-time patch monitoring provides deep insight into approved, unapproved, pending, and failed patching efforts.

Ready to start the Cyber Hygiene journey? Contact us at: Contact Us | Fortress Security Risk Management (fortresssrm.com)