Skip to main content

Update Windows now — Microsoft just fixed several dangerous exploits

Microsoft has just released a new patch, and this time around, the update comes with fixes for several dangerous and actively abused vulnerabilities and exploits in Windows.

A total of 68 vulnerabilities were addressed in the patch, many of them critical. Here’s what was fixed and how to make sure your Windows device is up to date.

Person sitting and using an HP computer with Windows 11.
Microsoft

Microsoft regularly releases updates for Windows 11 and Windows 10, but this time around, it seems to have addressed a large number of pressing issues that could have put your computer at risk. As part of this month’s Patch Tuesday, a total of 68 flaws were fixed, and 11 of those are classified as critical. According to Bleeping Computer, those critical flaws allowed potential attackers to remotely execute malicious code, as well as elevated privileges, within the system.

Broken down into various categories, Microsoft’s latest update contains 27 vulnerabilities related to the elevation of privileges, 16 that allowed remote code execution, 11 that disclosed information, six denial of service vulnerabilities, four that let the attacker bypass security features, and three related to spoofing.

Perhaps more importantly, the patch fixes six zero-day vulnerabilities that were being actively exploited. According to Microsoft’s classification, a vulnerability is referred to as “zero-day” if it is actively exploited and/or known to the public, but doesn’t have an official fix yet.

The first of the exploits required that users with an affected version of Windows access a specific server. While there would be no way for the attacker to execute this exploit without the victim visiting a malicious server or website, once they did, the hacker would be granted remote code execution privileges. Another vulnerability granted attackers the ability to bypass Mark of the Web (MOTW) defenses, causing a lack of availability of several security features, including Protected View in Microsoft Office.

A couple of the other zero-day vulnerabilities granted system privileges, and that can lead to a complete loss of control over your PC. You can check out a full list of fixed issues here, courtesy of Bleeping Computer.

How to make sure your Windows is up to date

Windows 11 version 22h2 update.
Image used with permission by copyright holder

All in all, this seems like a patch that you don’t want to miss. The update should be rolling out to Windows users, and whether you’re using Windows 11 or Windows 10, you can head on over to your Windows Update and download it. There is also a longer guide on how to perform the update.

A simple way to do this is by clicking on the Windows icon in the bottom-left corner of your screen and typing in Windows Update, then clicking Check for updates. Next, click the button that lets you check for updates and download the new patch. If nothing is available yet, make sure to check back shortly — not all users always get every update at the same time.

Editors' Recommendations

Monica J. White
Monica is a UK-based freelance writer and self-proclaimed geek. A firm believer in the "PC building is just like expensive…
Scores of people are downgrading back to Windows 10
The screen of the Galaxy Book4 Ultra.

Microsoft continues to struggle with the adoption of Windows 11 among its users. Recent data from Statcounter reveals a notable decline in the operating system’s market share, specifically compared with Windows 10.

After reaching an all-time high of 28.16% in February 2024, Windows 11 has experienced a drop, falling below the 26% mark.

Read more
The latest Windows update is breaking VPN connections
Windows Update running on a laptop.

Microsoft has acknowledged that the Windows security updates for April 2024 (KB5036893 for Windows 11, KB5036892 for Windows 10) are causing disruptions to virtual private network (VPN) connections across various client and server platforms. According to information on the Windows health dashboard, devices running Windows may experience VPN connection failures following the installation of either the April 2024 security update or the April 2024 non-security preview update.

The company has also stated that it is actively investigating user reports regarding these issues and will share more details in the coming days. The impacted Windows versions include Windows 11, Windows 10, and Windows Server 2008 onward.

Read more
Windows 11 might nag you about AI requirements soon
Copilot on a laptop on a desk.

After recent reports of new hardware requirements for the upcoming Windows 11 24H2 update, it is evident that Microsoft is gearing up to introduce a bunch of new AI features. A new report now suggests that the company is working on adding new code to the operating system to alert users if they fail to match the minimum requirements to run AI-based applications.

According to Albacore on X (formerly known as Twitter), systems that do not meet the requirements will display a warning message in the form of a watermark. After digging into the latest Windows 11 Insider Build 26200, he came across requirements coded in the operating system for an upcoming AI File Explorer feature. The minimum requirement includes an ARM64 processor, 16GB of memory, 225GB of total storage, and a Qualcomm Snapdragon X Elite NPU.

Read more