Summary:
-
Critical Vulnerability Alert
Microsoft has identified a critical flaw (CVE-2024-43491) in the Windows Update system that is being actively exploited. This vulnerability, which has a severity score of 9.8/10, allows attackers to undo previously applied security fixes. -
Affected Systems
The issue affects certain Windows 10 versions, specifically 1507 and its variants (Enterprise and IoT Enterprise 2015 LTSB). The flaw enables exploitation of vulnerabilities that were previously mitigated by updates released in March and August 2024. -
Mitigation Steps
To address this problem, users are advised to install the latest Servicing Stack Update (SSU KB5043936) followed by the September 2024 security update (KB5043083) to secure their systems.
Read more at: SecurityWeek
!