Today, July 19, 2024, a serious bug in Microsoft's systems was actively exploited. The issue affects several vulnerabilities that were addressed in the July 2024 Patch Tuesday update, which included fixes for 142 bugs, four of which were zero-day vulnerabilities.

Two of the critical vulnerabilities have been actively exploited. One of these vulnerabilities, CVE-2024-38080, is an elevation of privilege flaw in Windows Hyper-V, rated 7.8 on the CVSS scale. This flaw allows attackers to gain elevated privileges on affected systems. Another critical issue affects Microsoft SharePoint Server, where authenticated attackers with Site Owner privileges can inject and execute arbitrary code, posing a significant risk to the organization's security.

In addition, these updates include fixes for various other components such as .NET, Visual Studio, Microsoft Office, and SQL Server, and address issues ranging from remote code execution to information disclosure.

These vulnerabilities are part of a broader effort by Microsoft to protect its products from known threats. Users are strongly encouraged to apply these patches immediately to mitigate potential security risks.

Please take the opportunity to connect with your friends and family and share this video with them if you find it useful.