Two of the patches address vulnerabilities that are already being used in active attacks online, and four of the flaws were disclosed publicly before today - potentially giving adversaries a head start in figuring out how to exploit them.Īmong the zero-day bugs is CVE-2021-42292, a “security feature bypass” problem with Microsoft Excel versions 2013-2021 that could allow attackers to install malicious code just by convincing someone to open a booby-trapped Excel file (Microsoft says Mac versions of Office are also affected, but several places are reporting that Office for Mac security updates aren’t available yet). today released updates to quash at least 55 security bugs in its Windows operating systems and other software.
0 Comments
Leave a Reply. |