Patch Tuesday January
Patch Tuesday January
Summary
Microsoft has released new updates through patch Tuesday. A total of 48 vulnerabilities were resolved, 11 of those were remote code executions. 2 critical vulnerabilities were reported this time.
CVE-2024-20674 CVSS 3.1, 9: a security feature bypass regarding Windows Kerberos. Impersonation is possible through using this authentication feature. Microsoft States: “An authenticated attacker could exploit this vulnerability by establishing a machine-in-the-middle (MITM) attack or other local network spoofing technique, then sending a malicious Kerberos message to the client victim machine to spoof itself as the Kerberos authentication server.”
CVE-2024-21318 CVSS 3.1, 8.8: remote-code execution vulnerability for Microsoft SharePoint server. An authenticated threat actor on the network can run malicious code on the SharePoint server. Microsoft states that the exploitation is possible due to a low technical barrier.
The main list of patches are as follows:
- 11 Remote Code Execution Vulnerabilities
- 11 Information Disclosure Vulnerabilities
- 10 Elevation of Privilege Vulnerabilities
- 7 Security Feature Bypass
- 6 Denial of Service Vulnerabilities
- 3 Spoofing
More information can be found here.