Microsoft Notifies About Under-Attack Windows Kernel Flaw

31
Microsoft Notifies About Under-Attack Windows Kernel Flaw

Microsoft has recently scheduled its monthly batch of security patches with fixes for 56 security vulnerabilities. These are in a range of software products and operating systems. The zero-day patch features a mega-patch release with fixes for documented CVEs in multiple Windows solutions.

Tracked as CVE-2021-1732, one of the flaws is being exploited within the wild in zero-day attacks. The tech giant did not provide additional information on the in-the-wild attacks. It stated a statement of normal “exploitation detected” in the advisory.

The acknowledgment of this attack has been reported by DBAPPSecurity Ltd., the Chinese security vendor. Microsoft rated 11 vulnerabilities as “critical”, and 43 patched flaws are classified as “important”. The other two have been rated “moderated.”

Source: SecurityWeek