At a glance.
- Microsoft's Patch Tuesday fixes six actively exploited zero-days.
- GitHub Actions artifacts can be abused to compromise repositories.
- Kootenai Health discloses breach following ransomware attack.
Microsoft's Patch Tuesday fixes six actively exploited zero-days.
Microsoft yesterday issued patches for 89 flaws, nine of which were known zero-days, BleepingComputer reports. Six of the zero-days were being actively exploited and three were publicly disclosed. The company is still working on a fix for an additional publicly disclosed zero-day (CVE-2024-38202). Three of the zero-days (CVE-2024-38106, CVE-2024-38107, and CVE-2024-38193) allow an attacker to gain SYSTEM-level privileges on a machine. One of the actively exploited vulnerabilities (CVE-2024-38213) allows malware to bypass Windows' Mark of the Web security feature, though it requires user interaction to succeed.
Microsoft has also addressed several privilege-escalation vulnerabilities affecting its Azure Health Bot Service that could allow an attacker to gain unauthorized access to user and customer information. Researchers at Tenable discovered and disclosed the flaws.