Skip to main content
  1. Home
  2. Computing
  3. News

Windows 10 has two critical vulnerabilities; update now to avoid infection

By
Add as a preferred source on Google
windows 10 october update
Image used with permission by copyright holder

If you’re running any version of Windows 10, you should update your computer as soon as possible. Microsoft recently alerted users that it patched two critical remote code execution (RCE) “wormable” vulnerabilities, which could have allowed hackers to spread malware to both your — and others — PCs without your knowledge or any interaction.

Currently, these two new RCE vulnerabilities — code-named CVE-2019-1181 and CVE-2019-1182 — only impact Windows 10. The older versions of Microsoft’s operating systems are not impacted.

Recommended Videos

In a blog post, Microsoft makes it clear that third-parties were not aware of the vulnerability, which means that hackers likely did not use it to their advantage. However, the company is encouraging Windows users to update Windows 10 right away, if they aren’t already installed patches via Automatic Updates.

“These vulnerabilities were discovered by Microsoft during hardening of Remote Desktop Services as part of our continual focus on strengthening the security of our products.” “It is important that affected systems are patched as quickly as possible because of the elevated risks associated with wormable vulnerabilities like these,” wrote Simon Pope,  the director of Incident Response at Microsoft Security Response Center.

The impacts of these RCE vulnerabilities are fairly similar to a “Bluekeep” vulnerability which previously affected Windows 7, Windows XP, Windows Server 2008 R2, and Windows Server 2008 PCs in June. According to Microsoft, if a hacker were able to leverage this vulnerability, he or she could have executed “arbitrary code.” That means hackers could have installed unwanted programs, or even deleted user data on a users PC without their knowledge.

As always, the patches for these vulnerabilities can be downloaded by heading to Windows Update and pressing on Check for Updates. We have a guide which can help you update and navigate your way through Windows Update if you’re concerned you might be impacted.

Security vulnerabilities, exploits, and bugs are not uncommon for Windows 10. A separate security flaw was discovered on Wednesday, August 14, which could allow hackers to infect a PC with a line of malicious code. Before that, in June, the National Security Agency also warned Americans to update Windows 10 to avoid a critical security exploit and the BlueKeep wormable.

Arif Bacchus
Arif Bacchus
Former Computing Writer
Arif Bacchus is a native New Yorker and a fan of all things technology. Arif works as a freelance writer at Digital Trends…
Topics
Gemini will now take notes for you in Google Meet for you, if you the minimum $20 AI tax
Yet another Google subscription just dropped for Gemini
Google Meet Take Notes for me Gemini

Google has just released a useful Gemini feature, which you can try if you are a paying member of course. The company is now bringing "Take notes for me" for Gemini, which will be available in Google Meet for Google AI Pro and Google AI Ultra subscribers, along with eligible Workspace business customers.

For personal users, the feature starts with Google AI Pro, which costs $19.99 per month in the US. In other words, Gemini can now take your Google Meet notes, provided you pay the minimum AI tax.

Read more
After iPad Pro and MacBook Pro, the iMac could be the next in line for an OLED screen upgrade
iMac with M4

The iPhone got an OLED panel in 2017, while the iPad Pro followed in 2024. Even the MacBook Pro is expected to follow later this year or early next year. But what about the iMac?

According to TrendForce, the iMac could get an OLED upgrade. There's no timeline yet, but the direction is clear. Apple wants to replace its current display technologies with OLED, raising the bar for color quality for both regular users and professionals.

Read more
This $1,299 gaming PC wants to be a Steam Machine without waiting for Valve
Valve’s Steam Machine dream is already real in MetaPC's new prebuilt
MetaPC's Steamroller is a new Steam Machine rival

Valve’s Steam Machine may be the face of SteamOS, but the platform isn't exclusive to it. A big announcement after Steam Machine's unveiling was that SteamOS would be arriving on systems outside of the new hybrid console. Now, MetaPCs is one of the first to take advantage of this by opening the preorders for the Steamroller, a new prebuilt gaming desktop that ships with SteamOS installed by default.

Though Steamroller is not trying to be a tiny console-like cube. It is a normal desktop PC with standard parts and a real upgrade path. The system costs $1,299 and is listed with a preorder date of July 3, 2026.

Read more