5 security vulnerabilities in Microsoft products that are being exploited

Recently, Microsoft released its September patch list, addressing 79 security vulnerabilities in its products.

Based on information gathered about security vulnerabilities in Microsoft products, the National Cyber ​​Security Monitoring Center has identified 13 high-level and critical security vulnerabilities.

Specifically, eight vulnerabilities allow attackers to execute remote code: CVE-2024-43491 in Microsoft Windows Update; four vulnerabilities (CVE-2024-38018, CVE-2024-38227, CVE-2024-38228, CVE-2024-43464) in Microsoft SharePoint Server; two vulnerabilities (CVE-2024-21416 and CVE-2024-38045) in Windows TCP/IP; and CVE-2024-43463 in Microsoft Office Vision.

In addition, units need to pay attention to 5 critical vulnerabilities: CVE-2024-43461 in Windows MSHTML Platform, which allows spoofing attacks; CVE-2024-38014 in Windows Installer, which allows privilege escalation attacks; and two vulnerabilities, CVE-2024-38217 and CVE-2024-43487, in Windows Mark of the Web, and CVE-2024-38226 in Microsoft Publisher, which allow attackers to bypass protection mechanisms.

Specifically, organizations in Vietnam should note that five vulnerabilities are currently being exploited: CVE-2024-43491 in Microsoft Windows Update; CVE-2024-38014 in Windows Installer; CVE-2024-43463 in Microsoft Office Vision; CVE-2024-38226 in Microsoft Publisher; and two vulnerabilities, CVE-2024-38217 and CVE-2024-43487, in Windows Mark of the Web.

These vulnerabilities can be exploited by attackers to carry out illegal activities, compromising information security and affecting the information systems of agencies and organizations.

Therefore, relevant units need to investigate vulnerabilities, conduct reviews, and address cybersecurity issues within the system.

In addition, units need to regularly monitor warnings from relevant authorities regarding information security to promptly detect potential cyberattacks.