June 26, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Russian APT29 Targets Zimbra and TeamCity Servers
October 11, 2024Critical Veeam RCE Vulnerability Exploited by Akira and Fog Ransomware
October 11, 2024Russian APT29 Targets Zimbra and TeamCity Servers
October 11, 2024Critical Veeam RCE Vulnerability Exploited by Akira and Fog Ransomware
October 11, 2024
Severity
High
Analysis Summary
CVE-2024-43581 CVSS:7.1
Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
CVE-2024-43576 CVSS:7.8
Microsoft Office Remote Code Execution Vulnerability
CVE-2024-43541 CVSS:7.5
Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability
CVE-2024-43519 CVSS:8.8
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-43505 CVSS:7.8
Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2024-43504 CVSS:7.8
Microsoft Excel Remote Code Execution Vulnerability
CVE-2024-43503 CVSS:7.8
Microsoft SharePoint Elevation of Privilege Vulnerability
Impact
- Code Execution
- Denial of Service
- Privilege Escalation
Indicators of Compromise
CVE
- CVE-2024-43581
- CVE-2024-43576
- CVE-2024-43541
- CVE-2024-43519
- CVE-2024-43505
- CVE-2024-43504
- CVE-2024-43503
Affected Vendors
Microsoft
Affected Products
- Microsoft Windows Server 2022
- Microsoft Windows 10 Version 1809 - 10.0.0
- Microsoft 365 Apps for Enterprise - 16.0.1
- Microsoft Office 2019 - 19.0.0
- Microsoft Office LTSC 2021 - 16.0.1
- Microsoft Windows Server 2019 - 10.0.0
- Microsoft Windows Server 2019 (Server Core installation) - 10.0.0
- Microsoft Windows Server 2022 - 10.0.0
- Microsoft SharePoint Enterprise Server 2016 - 16.0.0
- Microsoft SharePoint Server 2019 - 16.0.0
- Microsoft SharePoint Server Subscription Edition - 16.0.0
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.