Microsoft Releases Security Updates for Multiple Products - 20240214002¶
Overview¶
Microsoft has released security updates to address vulnerabilities in multiple products including active exploits. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.
What is vulnerable?¶
| Product(s) Affected | Summary | Severity | CVSS | Active Exploitation | Dated |
|---|---|---|---|---|---|
| February 2024 Security Updates | 13 Feb, 2024 | ||||
| Internet Shortcut Files Security Feature Bypass Vulnerability | CVE-2024-21412 | High | 8.1 | Yes | 13 Feb, 2024 |
| Windows SmartScreen Security Feature Bypass Vulnerability | CVE-2024-21351 | High | 7.6 | Yes | 13 Feb, 2024 |
| Microsoft Exchange Server Elevation of Privilege Vulnerability | CVE-2024-21410 | Critical | 9.8 | Yes | 15 Feb, 2024 |
| Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerabilityy | CVE-2024-21338 | High | 7.8 | Yes | 04, Mar, 2024 |
What has been observed?¶
CISA added this vulnerability in their Known Exploited Vulnerabilities catalog. There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.
Recommendation¶
The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of two weeks (refer Patch Management).