Microsoft Patch Tuesday February 2024

Summary

Microsoft has released a new patch Tuesday. This month there are a total of 73 vulnerabilities, 2 of those are zero days that are being actively exploited. The 2 vulnerabilities that are being actively exploited are:

• CVE-2024-21351 (CVSS score: 7.6) – Windows SmartScreen Security Feature Bypass Vulnerability. This exploit is being used by DarkGate, Phemedrone Stealer, Mispadu. The vulnerability allows the threat actor to bypass Microsoft SmartScreen.
• CVE-2024-21412 (CVSS score: 8.1) – Internet Shortcut Files Security Feature Bypass Vulnerability. This vulnerability is being exploited by the hacking group Water Hydra and DarkCasino, this was detected by Trend Micro. The user needs to be convinced by the threat actor to click on the received file link to be able to bypass displayed security checks. The main target for these groups are financial market traders. CVE-2023-36025 was also used as a combination to zero day chain further, but this vulnerability was patched in November 2023.

The main list of patches are:

• 16 Elevation of Privilege Vulnerabilities
• 3 Security Feature Bypass Vulnerabilities
• 30 Remote Code Execution Vulnerabilities
• 5 Information Disclosure Vulnerabilities
• 9 Denial of Service Vulnerabilities
• 10 Spoofing Vulnerabilities

More information can be found here.