Microsoft has just released its new patch for April. This is particularly useful since it fixes many security flaws in the publisher's products. Among the vulnerabilities identified and for which its patch provides a fix, Microsoft highlights three particularly worrying flaws.
These three "0day" vulnerabilities were disclosed before a patch was implemented, reports ZDNet. The editor indicates that since, they have been actively exploited by hackers.
Two of the three flaws are Adobe Font Manager runtime vulnerabilities that allow malicious code to be executed remotely. Although they have been exploited, the damage they may have done is limited according to Microsoft, thanks to the protective measures deployed within the OS.
An update to do urgently
The third exploited vulnerability is an elevation of privilege vulnerability in OneDrive on Windows.
Finally, if they have not been exploited, Microsoft products still have 16 critical vulnerabilities. Some are also particularly worrying since they can give access to the Windows kernel. "An attacker who successfully exploited the vulnerability could execute code with elevated privileges," says the publisher.
Obviously, it is strongly advised to proceed with the installation of the update which will correct the three exploited flaws, but also the 110 other vulnerabilities detected in Microsoft products. To do this, go to your computer settings, "Update and Security" option and do an update search.
High-Tech
Windows 10: Latest Update Causes Many Problems
High-Tech
Office: Microsoft switches to monthly subscription for its software suite
- Computer science
- Hacker
- Pirate
- Windows 10
- Cybersecurity
- Windows
- Microsoft
- High-Tech