Earlier this week, Microsoft issued an update that addressed 71 different issues, according to Bleeping Computer. Three of them were zero-day vulnerabilities. Zero-day vulnerabilities are issues that are publicly known and could easily be exploited by bad actors.
Unfortunately, bugs and vulnerabilities are always going to be a part of software updates. But a good thing for Windows users is that Microsoft is usually pretty quick about identifying and fixing those issues.
The company’s latest patch fixes a bunch of potential vulnerabilities and Windows users will want to install this update as soon as possible.
The three zero-day vulnerabilities that Microsoft addressed in this update are as follows:
- CVE-2022-21990 – Remote Desktop Client Remote Code Execution Vulnerability
- CVE-2022-24459 – Windows Fax and Scan Service Elevation of Privilege Vulnerability
- CVE-2022-24512 – .NET and Visual Studio Remote Code Execution Vulnerability
Fortunately, it looks like none of the zero-day vulnerabilities were exploited. Although, Windows confirmed that proof-of-concept exploits for a couple of the vulnerabilities do exist.
However, now that these vulnerabilities have are public thanks to this update, the potential for bad actors to exploit them grows even larger. That’s why it is super important that you update your Windows PC.
If your PC hasn’t notified you of any update, you can check for an update manually. Just head to Start>Settings>Update & Security to check your Windows 10 device for an update.
On Windows 11, head to Start>Settings>Windows Update to find the update.
Make sure you go ahead and install this update as soon as possible. Now that Windows has identified these vulnerabilities and issued a patch, bad actors have even more information that they can use to exploit users.
Have any thoughts on this? Let us know down below in the comments or carry the discussion over to our Twitter or Facebook.