May 14, 2024 at 03:43PM
Microsoft released security updates addressing 60 vulnerabilities, including an actively exploited zero-day bug called CVE-2024-30051 with a severity score of 7.8/10. They also warned of CVE-2024-30040 allowing attackers to execute code in Microsoft 365, and CVE-2024-30044 for remote code execution in Microsoft Sharepoint, urging admins to take immediate action.
From the meeting notes, the key takeaways are:
– Microsoft rolled out security updates addressing approximately 60 vulnerabilities and highlighted an actively exploited zero-day bug, CVE-2024-30051, with a severity score of 7.8/10.
– Several vulnerabilities were reported as already exploited, including CVE-2024-30040, which bypasses security features in Microsoft 365 and Office, and CVE-2024-30044, a critical-severity remote code execution vulnerability in Microsoft Sharepoint.
– The meeting also mentioned other related security patch updates from Adobe, Apple, Chrome, SAP, and VMware.
These details can be used to prioritize necessary actions to address the security issues, such as applying relevant patches and updates to mitigate potential risks.