June 4, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
MeterPreter Malware – Active IOCs
October 9, 2024
Multiple D-Link Products Vulnerabilities
October 9, 2024
MeterPreter Malware – Active IOCs
October 9, 2024
Multiple D-Link Products Vulnerabilities
October 9, 2024
Severity
High
Analysis Summary
CVE-2024-43572 CVSS:7.8
Microsoft Management Console Remote Code Execution Vulnerability allows malicious Microsoft Saved Console (MSC) files to perform RCE on underlying devices.
CVE-2024-43573 CVSS:6.5
Windows MSHTML Platform Spoofing Vulnerability exists in the Windows MSHTML Platform, which is commonly used throughout Microsoft 365 and Microsoft Office products. It also affects Internet Explorer 11 and Legacy Microsoft Edge browsers on certain platforms and Windows applications.
Impact
- Gain Access
- Code Execution
Indicators of Compromise
CVE
- CVE-2024-43572
- CVE-2024-43573
Affected Vendors
Microsoft
Affected Products
- Microsoft Windows Server 2022
- Microsoft Windows 10 Version 1809 - 10.0.0
- Microsoft Windows 10 Version 21H2 - 10.0.0
- Microsoft Windows 10 Version 22H2 - 10.0.0
- Microsoft Windows 11 version 21H2 - 10.0.0
- Microsoft Windows 11 version 22H2 - 10.0.0
- Microsoft Windows 11 version 22H3 - 10.0.0
- Microsoft Windows Server 2019 - 10.0.0
- Microsoft Windows Server 2019 (Server Core installation) - 10.0.0
- Microsoft Windows Server 2022 - 10.0.0
- Microsoft Windows 11 Version 23H2 - 10.0.0
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.
