The Indian Computer Emergency Response Team (CERT-In) has issued a high-severity warning regarding critical vulnerabilities affecting a wide range of Microsoft products.
These vulnerabilities expose users to potential risks, including unauthorised access, data breaches, and system disruptions.
According to CERT-In, the vulnerabilities span across various Microsoft offerings, including:
The identified vulnerabilities could be exploited by malicious actors to gain elevated privileges on a user's system.
This could allow attackers to steal sensitive information, bypass security measures, execute malicious code, impersonate legitimate users, or even disrupt system functionality through denial-of-service attacks.
CERT-In highlights critical vulnerabilities within various Windows versions, potentially allowing attackers to gain unauthorised access to a user's device and steal sensitive data.
The Indian cybersecurity agency attributes these vulnerabilities to shortcomings in existing security mechanisms within the affected software.
Notably, the SmartScreen feature in Windows, designed to protect users from malware, may be inadvertently enabling malware infiltration due to these flaws.
To mitigate these risks, CERT-In strongly recommends that all users of these Microsoft products promptly install the latest security updates and patches.
Updating software ensures these vulnerabilities are addressed and reduces the potential for exploitation.
Also watch: iPhone 16 Pro models could get on-device AI features with iOS 18