Microsoft Addresses Zero-Day Attacks and Critical Security Vulnerabilities

3
Microsoft Addresses Zero-Day Attacks and Critical Security Vulnerabilities-01

For its April 2022 monthly scheduled update, Microsoft has published patches for 128 security vulnerabilities, ten of which are classified serious (including three code-execution bugs that require no user interaction to exploit).

There are also two critical-rated zero-days that allow privilege escalation, one of which is currently being exploited. The update includes fixes for Microsoft Windows and Windows Components, Microsoft Defender and Defender for Endpoint, Microsoft Dynamics, Microsoft Edge (Chromium-based), and Exchange Server.

It also includes fixes for Office Components, SharePoint Server, Windows Hyper-V, DNS Server, and Skype for Business,.NET and Visual Studio, and Windows App Store and Windows Print Spooler Components.

Read More: https://threatpost.com/microsoft-zero-days-wormable-bugs/179273/