Microsoft released a critical security update for CVE-2024-43629, addressing a Local Privilege Escalation vulnerability in multiple Windows versions. The vulnerability affects several Windows versions, including Windows 10, Windows 11, and Windows Server 2025, 2022, and 2019. Microsoft has rated this vulnerability as “Important,” assigning it a 7.8 severity score on the CVSS 3.1 scale. Exploiting this flaw allows attackers to escalate privileges and gain full system-level control once they access the victim’s device.
Sergey Tarasov, a security researcher from Positive Technologies’ Expert Security Center (PT ESC), discovered this vulnerability during routine research. Tarasov clarified that the vulnerability was identified as part of regular security research on widely used software programs. Positive Technologies responsibly reported the vulnerability to Microsoft, following established disclosure processes to help prevent potential exploits.
Upon receiving the notification, Microsoft promptly released a security update to patch the vulnerability and reduce associated risks. Tarasov urged users to install the update immediately, as failing to do so could leave systems vulnerable to exploitation. The vulnerability allows attackers to escalate privileges and access critical system components that are usually protected from users.
Once attackers gain control of the system, they can launch further malicious actions, such as stealing sensitive data.
Positive Technologies has previously worked with Microsoft to address vulnerabilities, including CVE-2017-0263, a similar flaw discovered in 2017. The CVE-2017-0263 vulnerability was exploited in phishing campaigns, allowing attackers to remotely access and compromise Windows systems. MaxPatrol VM, a vulnerability management solution, can help organizations detect similar vulnerabilities and manage security risks effectively.
MaxPatrol VM provides advanced scanning capabilities to identify vulnerabilities, making it easier for businesses to stay ahead of threats. With MaxPatrol VM, organizations can automate security checks and ensure timely patching to protect against potential exploits. Incorporating effective vulnerability management tools like MaxPatrol VM strengthens security measures and minimizes the risk of breaches.
Proactively managing vulnerabilities and applying patches improves overall cybersecurity resilience, preventing attackers from exploiting unpatched flaws.
By staying updated on vulnerabilities and applying fixes quickly, businesses can protect sensitive data and critical infrastructure from threats.

Related post

View all