Skip to main content
  1. Home
  2. Computing
  3. News

Windows 10 has two critical vulnerabilities; update now to avoid infection

By
windows 10 october update
Image used with permission by copyright holder

If you’re running any version of Windows 10, you should update your computer as soon as possible. Microsoft recently alerted users that it patched two critical remote code execution (RCE) “wormable” vulnerabilities, which could have allowed hackers to spread malware to both your — and others — PCs without your knowledge or any interaction.

Currently, these two new RCE vulnerabilities — code-named CVE-2019-1181 and CVE-2019-1182 — only impact Windows 10. The older versions of Microsoft’s operating systems are not impacted.

Recommended Videos

In a blog post, Microsoft makes it clear that third-parties were not aware of the vulnerability, which means that hackers likely did not use it to their advantage. However, the company is encouraging Windows users to update Windows 10 right away, if they aren’t already installed patches via Automatic Updates.

Related

“These vulnerabilities were discovered by Microsoft during hardening of Remote Desktop Services as part of our continual focus on strengthening the security of our products.” “It is important that affected systems are patched as quickly as possible because of the elevated risks associated with wormable vulnerabilities like these,” wrote Simon Pope,  the director of Incident Response at Microsoft Security Response Center.

The impacts of these RCE vulnerabilities are fairly similar to a “Bluekeep” vulnerability which previously affected Windows 7, Windows XP, Windows Server 2008 R2, and Windows Server 2008 PCs in June. According to Microsoft, if a hacker were able to leverage this vulnerability, he or she could have executed “arbitrary code.” That means hackers could have installed unwanted programs, or even deleted user data on a users PC without their knowledge.

As always, the patches for these vulnerabilities can be downloaded by heading to Windows Update and pressing on Check for Updates. We have a guide which can help you update and navigate your way through Windows Update if you’re concerned you might be impacted.

Security vulnerabilities, exploits, and bugs are not uncommon for Windows 10. A separate security flaw was discovered on Wednesday, August 14, which could allow hackers to infect a PC with a line of malicious code. Before that, in June, the National Security Agency also warned Americans to update Windows 10 to avoid a critical security exploit and the BlueKeep wormable.

Editors' Recommendations

Topics
Arif Bacchus
Arif Bacchus
Former Digital Trends Contributor
Arif Bacchus is a native New Yorker and a fan of all things technology. Arif works as a freelance writer at Digital Trends…
Microsoft plans to charge for Windows 10 updates in the future
Windows 11 and Windows 10 operating system logos are displayed on laptop screens.

Microsoft has confirmed it will offer security updates for Windows 10 after the end-of-life date for the operating system for consumer users but for a fee.

The brand recently announced plans to charge regular users for Extended Security Updates (ESU) who intend to continue using Windows 10 beyond the October 14, 2025 support date.

Read more
Windows is just an application now
Welcome screen of the Windows App on MacOS.

In a move toward enhancing remote desktop experiences, Microsoft has unveiled a new application at the ongoing Ignite developer conference. Aptly named the "Windows App," this tool serves as a remote utility, providing users with a centralized platform to manage various remote desktop connections. Whether you're utilizing Azure Virtual Desktop, Microsoft Dev Boxes, or traditional Remote Desktop connections, it can streamline the control of these connections in one accessible location.

Having an intuitive interface, it features distinct sections like a home page, device page, and app page. Remote sessions are organized in large windows, displaying essential details such as wallpaper, host system name, and system specifications (available on Windows 365 machines). It also supports custom display resolutions with support for scaling, as well as device redirection for peripherals like webcams, storage, and printers.

Read more
A major Windows update just launched. Here’s what’s new
Person using Windows 11 laptop on their lap by the window.

Microsoft has just announced the latest update to Windows 11, which brings the operating system up to version 23H2. This is a cumulative update that comes with some of the most exciting features already announced in September, including Copilot, and brings some changes to Teams, among other things. Here's what's new and how to get it on your own PC.

When Microsoft first announced Copilot during its September event, many thought that it'd be available right away -- and it was, but not widely. Now, with the 23H2 update, Copilot should be downloaded and toggled on by default, alongside everything else that was announced during the Surface event. Some new things are on the way, too.

Read more