CVE-2024-43573
published 2024-10-08CVE-2024-43573: Windows MSHTML Platform Spoofing Vulnerability Windows MSHTML Platform Spoofing Vulnerability
high8.1CVSS 3.1
AVNACLPRNUIRSUCHIHAN
KEVITW
CISA Known Exploited Vulnerabilitydue 2024-10-29
Exploited in the wild
EPSS
44.38%
98.6th percentile
Windows MSHTML Platform Spoofing Vulnerability
Windows MSHTML Platform Spoofing Vulnerability
Affected
28 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_10_version_1507 | >= 10.0.10240.0 < 10.0.10240.20796 | 10.0.10240.20796 |
| microsoft | windows_10_version_1607 | >= 10.0.14393.0 < 10.0.14393.7428 | 10.0.14393.7428 |
| microsoft | windows_10_version_1809 | >= 10.0.17763.0 < 10.0.17763.6414 | 10.0.17763.6414 |
| microsoft | windows_10_version_21h2 | >= 10.0.19043.0 < 10.0.19044.5011 | 10.0.19044.5011 |
| microsoft | windows_10_version_22h2 | >= 10.0.19045.0 < 10.0.19045.5011 | 10.0.19045.5011 |
| microsoft | windows_11_version_21h2 | >= 10.0.22000.0 < 10.0.22000.3260 | 10.0.22000.3260 |
| microsoft | windows_11_version_22h2 | >= 10.0.22621.0 < 10.0.22621.4317 | 10.0.22621.4317 |
| microsoft | windows_11_version_22h3 | >= 10.0.22631.0 < 10.0.22631.4317 | 10.0.22631.4317 |
| microsoft | windows_11_version_23h2 | >= 10.0.22631.0 < 10.0.22631.4317 | 10.0.22631.4317 |
| microsoft | windows_11_version_24h2 | >= 10.0.26100.0 < 10.0.26100.2033 | 10.0.26100.2033 |
| microsoft | windows_server_2012_r2 | >= 6.3.9600.0 < 6.3.9600.22221 | 6.3.9600.22221 |
| microsoft | windows_server_2016 | >= 10.0.14393.0 < 10.0.14393.7428 | 10.0.14393.7428 |
| microsoft | windows_server_2019 | >= 10.0.17763.0 < 10.0.17763.6414 | 10.0.17763.6414 |
| microsoft | windows_server_2022 | >= 10.0.20348.0 < 10.0.20348.2762 | 10.0.20348.2762 |
| msrc | windows_10 | — | — |
| msrc | windows_10_version_1607 | — | — |
| msrc | windows_10_version_1809 | — | — |
| msrc | windows_10_version_21h2 | — | — |
| msrc | windows_10_version_22h2 | — | — |
| msrc | windows_11_version_21h2 | — | — |
| msrc | windows_11_version_22h2 | — | — |
| msrc | windows_11_version_23h2 | — | — |
| msrc | windows_11_version_24h2 | — | — |
| msrc | windows_server_2012_r2 | — | — |
| msrc | windows_server_2016 | — | — |
Detection & IOCsextracted from sources · hover to see the quote
snort↗
64083 - 64086, 64089, 64090, 64111 and 64112
snort↗
301034 - 301036 and 301041
- →This is the fourth MSHTML vulnerability exploited in the wild in 2024; treat any MSHTML-related process activity (especially on systems still running IE11 or Legacy Edge) as high-priority for investigation. ↗
- →The spoofing vulnerability also affects Internet Explorer 11 and Legacy Microsoft Edge browsers on certain platforms and Windows applications; flag activity from these legacy browser processes. ↗
- ·Talos Snort rule numbers cover multiple October 2024 Patch Tuesday CVEs, not exclusively CVE-2024-43573; verify which rule SIDs specifically target MSHTML spoofing before deploying. ↗
- ·Microsoft has not shared details of the vulnerability or source of disclosure for CVE-2024-43573, limiting precise behavioral detection rule development. ↗
- ·MSHTML technology remains active and vulnerable even on systems where Internet Explorer has been retired; detection scope must extend beyond IE browser processes to all Windows components using MSHTML. ↗
CVSS provenance
nvdv3.18.1HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
cvelistv56.5MEDIUM
vulncheck8.8HIGH
cisa8.1HIGH
vendor_msrc6.5MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA
Microsoft Windows MSHTML Platform Spoofing Vulnerability
cisa·2024-10-08·CVSS 8.1
CVE-2024-43573 [HIGH] CWE-79 Microsoft Windows MSHTML Platform Spoofing Vulnerability
Vulnerability: Microsoft Windows MSHTML Platform Spoofing Vulnerability
Affected: Microsoft Windows
Microsoft Windows MSHTML Platform contains an unspecified spoofing vulnerability which can lead to a loss of confidentiality.
Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notes: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43573 ; https://nvd.nist.gov/vuln/detail/CVE-2024-43573
Remediation Due Date: 2024-10-29
Microsoft
Windows MSHTML Platform Spoofing Vulnerability
vendor_msrc·2024-10-08·CVSS 6.5
CVE-2024-43573 [MEDIUM] CWE-79 Windows MSHTML Platform Spoofing Vulnerability
Windows MSHTML Platform Spoofing Vulnerability
FAQ: The Security Updates table indicates that this vulnerability affects all supported versions of Microsoft Windows except Windows Server 2008, Windows Server 2008 R2, and Windows Server 2012. Why are IE Cumulative updates listed for Windows Server 2012 R2?
While Microsoft has announced retirement of the Internet Explorer 11 application on certain platforms and the Microsoft Edge Legacy application is deprecated, the underlying MSHTML, EdgeHTML, and scripting platforms are still supported. The MSHTML platform is used by Internet Explorer mode in Microsoft Edge as well as other applications through WebBrowser control. The EdgeHTML platform is used by WebView and some UWP applications. The scripting platforms are used by MSHTML and EdgeHTML b
CVEList
Windows MSHTML Platform Spoofing Vulnerability
cvelistv5·2024-10-08·CVSS 6.5
CVE-2024-43573 [MEDIUM] CWE-79 Windows MSHTML Platform Spoofing Vulnerability
Windows MSHTML Platform Spoofing Vulnerability
Windows MSHTML Platform Spoofing Vulnerability
VulnCheck
Microsoft Windows MSHTML Platform Security Feature Bypass Vulnerability
vulncheck·2024·CVSS 8.8
CVE-2024-30040 [HIGH] CWE-20 Microsoft Windows MSHTML Platform Security Feature Bypass Vulnerability
Microsoft Windows MSHTML Platform Security Feature Bypass Vulnerability
Microsoft Windows MSHTML Platform contains an unspecified vulnerability that allows for a security feature bypass.
Affected: Microsoft Windows
Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Exploitation References: https://api.msrc.microsoft.com/cvrf/v3.0/cvrf/2024-May; https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30040; https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json; https://www.zerodayinitiative.com/blog/2024/5/14/the-may-2024-security-update-review; https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-may-2024#vulnerabilities; https://ti.qianxin.com/upload
VulnCheck
Microsoft Windows Management Console Remote Code Execution Vulnerability
vulncheck·2024·CVSS 7.8
CVE-2024-43572 [HIGH] CWE-707 Microsoft Windows Management Console Remote Code Execution Vulnerability
Microsoft Windows Management Console Remote Code Execution Vulnerability
Microsoft Windows Management Console contains unspecified vulnerability that allows for remote code execution.
Affected: Microsoft Windows
Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Exploitation References: https://api.msrc.microsoft.com/cvrf/v3.0/cvrf/2024-Oct; https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43572; https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json; https://www.tenable.com/blog/microsoft-october-2024-patch-tuesday-addresses-117-cves-cve-2024-43572-cve-2024-43573; https://asec.ahnlab.com/en/86391/; https://asec.ahnlab.com/ko/86354/; https://www.proofpoint.com/us/blog/th
VulnCheck
Microsoft Windows MSHTML Platform Spoofing Vulnerability
vulncheck·2024·CVSS 7.5
CVE-2024-38112 [HIGH] CWE-451 Microsoft Windows MSHTML Platform Spoofing Vulnerability
Microsoft Windows MSHTML Platform Spoofing Vulnerability
Microsoft Windows MSHTML Platform contains a spoofing vulnerability that has a high impact to confidentiality, integrity, and availability.
Affected: Microsoft Windows
Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Exploitation References: https://api.msrc.microsoft.com/cvrf/v3.0/cvrf/2024-Jul; https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38112; https://research.checkpoint.com/2024/resurrecting-internet-explorer-threat-actors-using-zero-day-tricks-in-internet-shortcut-file-to-lure-victims-cve-2024-38112/; https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json; https://www.trendmicro.com/en_us/research/24/g/
VulnCheck
Microsoft Windows MSHTML Platform Spoofing Vulnerability
vulncheck·2024·CVSS 7.5
CVE-2024-43461 [HIGH] CWE-451 Microsoft Windows MSHTML Platform Spoofing Vulnerability
Microsoft Windows MSHTML Platform Spoofing Vulnerability
Microsoft Windows MSHTML Platform contains a user interface (UI) misrepresentation of critical information vulnerability that allows an attacker to spoof a web page. This vulnerability was exploited in conjunction with CVE-2024-38112.
Affected: Microsoft Windows
Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Exploitation References: https://api.msrc.microsoft.com/cvrf/v3.0/cvrf/2024-Sep; https://www.zerodayinitiative.com/blog/2024/9/10/the-september-2024-security-update-review; https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-43461; https://www.bleepingcomputer.com/news/security/windows-vulnerability-abused-braille-spaces-in-zero-day-atta
VulnCheck
Microsoft Windows MSHTML Platform Spoofing Vulnerability
vulncheck·2024·CVSS 6.5
CVE-2024-43573 [MEDIUM] CWE-79 Microsoft Windows MSHTML Platform Spoofing Vulnerability
Microsoft Windows MSHTML Platform Spoofing Vulnerability
Microsoft Windows MSHTML Platform contains an unspecified spoofing vulnerability which can lead to a loss of confidentiality.
Affected: Microsoft Windows
Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Exploitation References: https://api.msrc.microsoft.com/cvrf/v3.0/cvrf/2024-Oct; https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43573; https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json; https://www.tenable.com/blog/microsoft-october-2024-patch-tuesday-addresses-117-cves-cve-2024-43572-cve-2024-43573
Remediation Due: 2024-10-29
No detection rules found.
No public exploits indexed.
Krebs
Funding Expires for Key Cyber Vulnerability Database
blogs_krebs·2025-04-17·CVSS 6.5
[MEDIUM] Funding Expires for Key Cyber Vulnerability Database
A critical resource that cybersecurity professionals worldwide rely on to identify, mitigate and fix security vulnerabilities in software and hardware is in danger of breaking down. The federally funded, non-profit research and development organization MITRE warned today that its contract to maintain the Common Vulnerabilities and Exposures (CVE) program — which is traditionally funded each year by the Department of Homeland Security — expires on April 16.
Tens of thousands of security flaws in software are found and reported every year, and these vulnerabilities are eventually assigned their own unique CVE tracking number (e.g. CVE-2024-43573, which is a Microsoft Windows bug that Redmond patched last year).
There are hundreds of organizations — known as CVE Numbering Authorities (CNAs)
Krebs
Funding Expires for Key Cyber Vulnerability Database
blogs_krebs·2025-04-16·CVSS 6.5
[MEDIUM] Funding Expires for Key Cyber Vulnerability Database
A critical resource that cybersecurity professionals worldwide rely on to identify, mitigate and fix security vulnerabilities in software and hardware is in danger of breaking down. The federally funded, non-profit research and development organization MITRE warned today that its contract to maintain the Common Vulnerabilities and Exposures (CVE) program — which is traditionally funded each year by the Department of Homeland Security — expires on April 16.
A letter from MITRE vice president Yosry Barsoum, warning that the funding for the CVE program will expire on April 16, 2025.
Tens of thousands of security flaws in software are found and reported every year, and these vulnerabilities are eventually assigned their own unique CVE tracking number (e.g. CVE-2024-43573 , which is a Microso
Checkpoint
14th October – Threat Intelligence Report
blogs_checkpoint·2024-10-14
CVE-2024-43572 14th October – Threat Intelligence Report
Latest Publications
CPR Podcast Channel
AI Research
Web 3.0 Security
Intelligence Reports
ThreatCloud AI
Threat Intelligence & Research
Zero Day Protection
Sandblast File Analysis
About Us
SUBSCRIBE
2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
## 14th October – Threat Intelligence Report
TOP ATTACKS AND BREACHES
Nonprofit healthcare organization Axis Health System has been hit by a ransomware attack by the Rhysida gang, leading to the theft of sensitive data, including mental health and substance abuse records. Rhysida is demanding $1.5 million and has threatened to publish the data in six days if unpaid. The gang has also begun leaking 102GB of data from Golden Age Nursing Home, including over 35K files, which allegedly contain medical records and disch
Talos
What NIST’s latest password standards mean, and why the old ones weren’t working
blogs_talos·2024-10-10
What NIST’s latest password standards mean, and why the old ones weren’t working
## What NIST’s latest password standards mean, and why the old ones weren’t working
Say goodbye to the days of using the “@” symbol to mean “a” in your password or replacing an “S” with a “$.”
The U.S. National Institute of Standards and Technology (NIST) recently announced new guidelines for the ways website and organizations should handle password creation and management that will do away with many of the “common sense” things we’ve thought about passwords for years now.
Here is a tl;dr version of what these proposed guidelines say:
Passwords need to be at least eight characters long, and sites should have an additional recommendation to make them at least 15 characters long.
Credential service providers (CSPs) should allow users to make their passwords as long as 64 characters.
CS
Talos
What NIST’s latest password standards mean, and why the old ones weren’t working
blogs_talos·2024-10-10
What NIST’s latest password standards mean, and why the old ones weren’t working
Say goodbye to the days of using the “@” symbol to mean “a” in your password or replacing an “S” with a “$.”
The U.S. National Institute of Standards and Technology (NIST) recently announced new guidelines for the ways website and organizations should handle password creation and management that will do away with many of the “common sense” things we’ve thought about passwords for years now.
Here is a tl;dr version of what these proposed guidelines say:
- Passwords need to be at least eight characters long, and sites should have an additional recommendation to make them at least 15 characters long.
- Credential service providers (CSPs) should allow users to make their passwords as long as 64 characters.
- CSPs should allow ASCII and Unicode characters to be included in passwords.
- Rathe
Krebs
Patch Tuesday, October 2024 Edition
blogs_krebs·2024-10-09·CVSS 7.8
CVE-2024-43573 [HIGH] Patch Tuesday, October 2024 Edition
Microsoft today released security updates to fix at least 117 security holes in Windows computers and other software, including two vulnerabilities that are already seeing active attacks. Also, Adobe plugged 52 security holes across a range of products, and Apple has addressed a bug in its new macOS 15 “Sequoia” update that broke many cybersecurity tools.
One of the zero-day flaws — CVE-2024-43573 — stems from a security weakness in MSHTML, the proprietary engine of Microsoft’s Internet Explorer web browser. If that sounds familiar it’s because this is the fourth MSHTML vulnerability found to be exploited in the wild so far in 2024.
Nikolas Cemerikic, a cybersecurity engineer at Immersive Labs, said the vulnerability allows an attacker to trick users into viewing malicious web content, w
Qualys
Microsoft & Adobe October 2024 Patch Tuesday Updates | Qualys
blogs_qualys·2024-10-08
Microsoft & Adobe October 2024 Patch Tuesday Updates | Qualys
#### Table of Contents
- Microsoft Patch Tuesday for October 2024
- Adobe Patches for October 2024
- Zero-day Vulnerabilities Patched in October Patch Tuesday Edition
- Critical Severity Vulnerabilities Patched in October Patch Tuesday Edition
- Microsoft Release Summary
- Discover and Prioritize Vulnerabilities in Vulnerability Management, Detection & Response (VMDR)
- Rapid Response with Patch Management (PM)
- EVALUATE Vendor-Suggested Mitigation with Policy Compliance (PC)
- Qualys Monthly Webinar Series
Microsoft has rolled out its October 2024 Patch Tuesday updates, offering vital security fixes for IT professionals to implement. With several critical vulnerabilities patched, this release highlights the ongoing need for regular maintenance and attention to security.
## Microsoft P
Bleepingcomputer
Microsoft October 2024 Patch Tuesday fixes 5 zero-days, 118 flaws
blogs_bleepingcomputer·2024-10-08·CVSS 6.5
[MEDIUM] Microsoft October 2024 Patch Tuesday fixes 5 zero-days, 118 flaws
## Microsoft October 2024 Patch Tuesday fixes 5 zero-days, 118 flaws
## Lawrence Abrams
28 Elevation of Privilege vulnerabilities
7 Security Feature Bypass vulnerabilities
43 Remote Code Execution vulnerabilities
6 Information Disclosure vulnerabilities
26 Denial of Service vulnerabilities
7 Spoofing vulnerabilities
This count does not include three Edge flaws that were previously fixed on October 3rd.
To learn more about the non-security updates released today, you can review our dedicated articles on the new Windows 11 KB5044284 and KB5044285 cumulative updates and the Windows 10 KB5044273 update .
## Five zero-days disclosed
This month's Patch Tuesday fixes five zero-days, two of which were actively exploited in attacks, and all five were publicly disclosed.
Microsoft classi
Trendmicro
The October 2024 Security Update Review
blogs_trendmicro·2024-10-08·CVSS 7.1
[HIGH] The October 2024 Security Update Review
## The October 2024 Security Update Review
Get the October 2024 security update and review.
By: Dustin Childs 2024/10/08 Read time: ( words)
Save to Folio
It’s the spooky season, and there’s nothing spookier than security patches – at least in my world. Microsoft and Adobe have released their latest patches, and no bones about it, there are some skeletons in those closets. Take a break from your regular activities and join us as we review the details of their latest security alerts. If you’d rather watch the full video recap covering the entire release, you can check it out here:
CVE
Title
Severity
CVSS
Public
Exploited
Type
CVE-2024-43572
Microsoft Management Console Remote Code Execution Vulnerability
Moderate
7.8
Yes
Yes
RCE
CVE-2024-43573
Windows MSHTML Platform Spo
Trendmicro
The October 2024 Security Update Review
blogs_trendmicro·2024-10-08
The October 2024 Security Update Review
# The October 2024 Security Update Review
Get the October 2024 security update and review.
By: Dustin Childs
2024/10/08
Read time: ( words)
Save to Folio
It’s the spooky season, and there’s nothing spookier than security patches – at least in my world. Microsoft and Adobe have released their latest patches, and no bones about it, there are some skeletons in those closets. Take a break from your regular activities and join us as we review the details of their latest security alerts. If you’d rather watch the full video recap covering the entire release, you can check it out here:
Adobe Patches for October 2024
For October, Adobe released nine patches addressing 52 CVEs in Adobe Substance 3D Painter, Commerce, Dimension, Animate, Lightroom, InCopy, InDesign, Substance 3D Stager, and A
Tenable
Microsoft’s October 2024 Patch Tuesday Addresses 117 CVEs (CVE-2024-43572, CVE-2024-43573)
blogs_tenable·2024-10-08·CVSS 7.8
[HIGH] Microsoft’s October 2024 Patch Tuesday Addresses 117 CVEs (CVE-2024-43572, CVE-2024-43573)
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Talos
Largest Patch Tuesday since July includes two exploited in the wild, three critical vulnerabilities
blogs_talos·2024-10-08·CVSS 7.8
[HIGH] Largest Patch Tuesday since July includes two exploited in the wild, three critical vulnerabilities
## Largest Patch Tuesday since July includes two exploited in the wild, three critical vulnerabilities
The largest Microsoft Patch Tuesday since July includes two vulnerabilities that have been exploited in the wild and three other critical issues across the company’s range of hardware and software offerings.
October’s monthly security update from Microsoft includes fixes for 117 CVEs, the most in a month since July’s updates covered 142 vulnerabilities .
The two vulnerabilities that Microsoft reports have been actively exploited in the wild and are publicly known are both rated as only being of “moderate” severity.
CVE-2024-43572 is a remote code execution vulnerability in the Microsoft Management Console that could allow an attacker to execute arbitrary code on the targeted machine.
Qualys
Microsoft and Adobe Patch Tuesday, October 2024 Security Update Review
blogs_qualys·2024-10-08
Microsoft and Adobe Patch Tuesday, October 2024 Security Update Review
## Table of Contents
Microsoft Patch Tuesday for October 2024
Adobe Patches for October 2024
Zero-day Vulnerabilities Patched in October Patch Tuesday Edition
Critical Severity Vulnerabilities Patched in October Patch Tuesday Edition
Microsoft Release Summary
Discover and Prioritize Vulnerabilities in Vulnerability Management, Detection & Response (VMDR)
Rapid Response with Patch Management (PM)
EVALUATE Vendor-Suggested Mitigation with Policy Compliance (PC)
Qualys Monthly Webinar Series
Microsoft has rolled out its October 2024 Patch Tuesday updates, offering vital security fixes for IT professionals to implement. With several critical vulnerabilities patched, this release highlights the ongoing need for regular maintenance and attention to security.
## Microsoft Patch Tuesday
Krebs
Patch Tuesday, October 2024 Edition
blogs_krebs·2024-10-08·CVSS 7.8
CVE-2024-43573 [HIGH] Patch Tuesday, October 2024 Edition
Microsoft today released security updates to fix at least 117 security holes in Windows computers and other software, including two vulnerabilities that are already seeing active attacks. Also, Adobe plugged 52 security holes across a range of products, and Apple has addressed a bug in its new macOS 15 “ Sequoia ” update that broke many cybersecurity tools.
One of the zero-day flaws — CVE-2024-43573 — stems from a security weakness in MSHTML , the proprietary engine of Microsoft’s Internet Explorer web browser. If that sounds familiar it’s because this is the fourth MSHTML vulnerability found to be exploited in the wild so far in 2024.
Nikolas Cemerikic , a cybersecurity engineer at Immersive Labs , said the vulnerability allows an attacker to trick users into viewing malicious web conte
Talos
Largest Patch Tuesday since July includes two exploited in the wild, three critical vulnerabilities
blogs_talos·2024-10-08·CVSS 9.8
[CRITICAL] Largest Patch Tuesday since July includes two exploited in the wild, three critical vulnerabilities
The largest Microsoft Patch Tuesday since July includes two vulnerabilities that have been exploited in the wild and three other critical issues across the company’s range of hardware and software offerings.
October’s monthly security update from Microsoft includes fixes for 117 CVEs, the most in a month since July’s updates covered 142 vulnerabilities.
The two vulnerabilities that Microsoft reports have been actively exploited in the wild and are publicly known are both rated as only being of “moderate” severity.
CVE-2024-43572 is a remote code execution vulnerability in the Microsoft Management Console that could allow an attacker to execute arbitrary code on the targeted machine. Microsoft’s security update will prevent untrusted Microsoft Saved Console (MSC) files from being opened
Zscaler
Zscaler protects against 4 new vulnerabilities | 10-08-2024
blogs_zscaler·CVSS 6.5
[MEDIUM] Zscaler protects against 4 new vulnerabilities | 10-08-2024
Provide users with seamless, secure, reliable access to applications and data.
Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.
Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.
Provide zero trust site-to-site connectivity and reliable access to B2B apps for partners.
Industry Report
Zscaler: A Leader in the 2025 Gartner® Magic Quadrant™ for Security Service Edge (SSE)
USE CASES
INDUSTRY & MARKET SOLUTIONS
PARTNERS
TECHNOLOGY PARTNERS
Resource Center
Events & Trainings
Security Research & Services
Tools
Community & Support
CXO REVOLUTIONARIES
Amplifying the voices of real-world digital and zero trust pioneers
Discover how it began and where it’s going
Meet o
Crowdstrike
October 2024 Patch Tuesday: Updates and Analysis
blogs_crowdstrike·CVSS 7.5
CVE-2026-20929 [HIGH] October 2024 Patch Tuesday: Updates and Analysis
How CrowdStrike is Accelerating Exposure Evaluation as Adversaries Gain Speed Apr 06, 2026
STARDUST CHOLLIMA Likely Compromises Axios npm Package Apr 01, 2026
Falcon for IT Supports Windows Secure Boot Certificate Lifecycle Management Apr 01, 2026
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse Mar 31, 2026
How CrowdStrike is Accelerating Exposure Evaluation as Adversaries Gain Speed Apr 06, 2026
STARDUST CHOLLIMA Likely Compromises Axios npm Package Apr 01, 2026
Falcon for IT Supports Windows Secure Boot Certificate Lifecycle Management Apr 01, 2026
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse Mar 31, 2026
Video Highlights the 4 Key Steps to Successful Incident Response Dec 02, 2019
Helping Non-Security Stakeholders Understand AT
2024-10-08
Published
2024-10-08
Added to CISA KEV
Exploited in the wild