Microsoft has released updates to address multiple vulnerabilities in Microsoft software with Microsoft's August 2024 Patch Tuesday.

Of the fixed vulnerabilities: 36 are elevation of privilege vulnerabilities, 4 Security Feature Bypass Vulnerabilities, 28 are remote code execution vulnerabilities, 8 are information disclosure vulnerabilities and 6 are denial of service vulnerabilities and 7 - Spoofing Vulnerabilities.

This month's Patch Tuesday also includes fixes for nine zero-day vulnerabilities:

• CVE-2024-38178 - Scripting Engine Memory Corruption Vulnerability;
• CVE-2024-38193 - Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability;
• CVE-2024-38213 - Windows Mark of the Web Security Feature Bypass Vulnerability;
• CVE-2024-38106 - Windows Kernel Elevation of Privilege Vulnerability;
• CVE-2024-38107 - Windows Power Dependency Coordinator Elevation of Privilege Vulnerability;
• CVE-2024-38189 - Microsoft Project Remote Code Execution Vulnerability;
• CVE-2024-38199 - Windows Line Printer Daemon (LPD) Service Remote Code Execution Vulnerability;
• CVE-2024-21302 - Windows Secure Kernel Mode Elevation of Privilege Vulnerability;
• CVE-2024-38200 - Microsoft Office Spoofing Vulnerability;

More information on vulnerabilities and updates is available in the Microsoft’s August 2024 Security Updates page – microsoft.com.

Source: bleepingcomputer.com