Microsoft fixes two zero-days exploited by attackers (CVE-2024-38080, CVE-2024-38112)

/ 0-day, Action1, Automox, CVE, Don't miss, Hot stuff, Microsoft, MS SQL Server, News, Patch Tuesday, security update, Trend Micro, virtualization, vulnerability, Windows / By SecurityTicks

Microsoft fixes two zero-days exploited by attackers (CVE-2024-38080, CVE-2024-38112)

2024-07-09 at 22:31

By Zeljka Zorz

For July 2024 Patch Tuesday, Microsoft has released security updates and patches that fix 142 CVEs, including two exploited zero-days (CVE-2024-38080, CVE-2024-38112) in Windows Hyper-V and Windows MSHTML Platform (respectively). Zero-days exploited in the wild (CVE-2024-38080, CVE-2024-38112) CVE-2024-38080 is a integer overflow or wraparound bug affecting Hyper-V, Windows’ native hypervisor for creating virtual machines on systems running Windows and Windows Server. Successful exploitation may allow attackers to gain SYSTEM privileges on the host machine, but … More →

The post Microsoft fixes two zero-days exploited by attackers (CVE-2024-38080, CVE-2024-38112) appeared first on Help Net Security.

React to this headline:

Microsoft fixes two zero-days exploited by attackers (CVE-2024-38080, CVE-2024-38112)

Related Posts