Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws
8 mins read

Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws

geekfeed0Tagged , , , , , ,

Today is Microsoft’s December 2024 Patch Tuesday, which includes security updates for 71 flaws, including one actively exploited zero-day vulnerability.

This Patch Tuesday fixed sixteen critical vulnerabilities, all of which are remote code execution flaws.

The number of bugs in each vulnerability category is listed below:

  • 27 Elevation of Privilege Vulnerabilities
  • 30 Remote Code Execution Vulnerabilities
  • 7 Information Disclosure Vulnerabilities
  • 5 Denial of Service Vulnerabilities
  • 1 Spoofing Vulnerabilities

This count does not include two Edge flaws that were previously fixed on December 5 and 6th.

To learn more about the non-security updates released today, you can review our dedicated articles on the Windows 11 KB5048667 & KB5048685 cumulative updates and the Windows 10 KB5048652 cumulative update.

One actively exploited zero-day disclosed

This month’s Patch Tuesday fixes one actively exploited, publicly disclosed zero-day vulnerability.

Microsoft classifies a zero-day flaw as one that is publicly disclosed or actively exploited while no official fix is available.

The actively exploited zero-day vulnerability in today’s updates are:

CVE-2024-49138 – Windows Common Log File System Driver Elevation of Privilege Vulnerability

Microsoft has fixed an actively exploited zero-day that allows attackers to gain SYSTEM privileges on Windows devices.

No information has been released as to how the flaw was exploited in attacks.

However, as it was discovered by the Advanced Research Team with CrowdStrike, we will likely see a report about its exploitation in the future.

GeekFeed contacted CrowdStrike for more information but has not yet received a response.

Recent updates from other companies

Other vendors who released updates or advisories in December 2024 include:

The December 2024 Patch Tuesday Security Updates

Below is the complete list of resolved vulnerabilities in the December 2024 Patch Tuesday updates.

To access the full description of each vulnerability and the systems it affects, you can view the full report here.

TagCVE IDCVE TitleSeverity
GitHubCVE-2024-49063Microsoft/Muzic Remote Code Execution VulnerabilityImportant
Microsoft Defender for EndpointCVE-2024-49057Microsoft Defender for Endpoint on Android Spoofing VulnerabilityImportant
Microsoft Edge (Chromium-based)CVE-2024-12053Chromium: CVE-2024-12053 Type Confusion in V8Unknown
Microsoft Edge (Chromium-based)CVE-2024-49041Microsoft Edge (Chromium-based) Spoofing VulnerabilityModerate
Microsoft OfficeADV240002Microsoft Office Defense in Depth UpdateModerate
Microsoft OfficeCVE-2024-49059Microsoft Office Elevation of Privilege VulnerabilityImportant
Microsoft OfficeCVE-2024-43600Microsoft Office Elevation of Privilege VulnerabilityImportant
Microsoft Office AccessCVE-2024-49142Microsoft Access Remote Code Execution VulnerabilityImportant
Microsoft Office ExcelCVE-2024-49069Microsoft Excel Remote Code Execution VulnerabilityImportant
Microsoft Office PublisherCVE-2024-49079Input Method Editor (IME) Remote Code Execution VulnerabilityImportant
Microsoft Office SharePointCVE-2024-49064Microsoft SharePoint Information Disclosure VulnerabilityImportant
Microsoft Office SharePointCVE-2024-49062Microsoft SharePoint Information Disclosure VulnerabilityImportant
Microsoft Office SharePointCVE-2024-49068Microsoft SharePoint Elevation of Privilege VulnerabilityImportant
Microsoft Office SharePointCVE-2024-49070Microsoft SharePoint Remote Code Execution VulnerabilityImportant
Microsoft Office WordCVE-2024-49065Microsoft Office Remote Code Execution VulnerabilityImportant
Role: DNS ServerCVE-2024-49091Windows Domain Name Service Remote Code Execution VulnerabilityImportant
Role: Windows Hyper-VCVE-2024-49117Windows Hyper-V Remote Code Execution VulnerabilityCritical
System Center Operations ManagerCVE-2024-43594System Center Operations Manager Elevation of Privilege VulnerabilityImportant
Windows Cloud Files Mini Filter DriverCVE-2024-49114Windows Cloud Files Mini Filter Driver Elevation of Privilege VulnerabilityImportant
Windows Common Log File System DriverCVE-2024-49088Windows Common Log File System Driver Elevation of Privilege VulnerabilityImportant
Windows Common Log File System DriverCVE-2024-49138Windows Common Log File System Driver Elevation of Privilege VulnerabilityImportant
Windows Common Log File System DriverCVE-2024-49090Windows Common Log File System Driver Elevation of Privilege VulnerabilityImportant
Windows File ExplorerCVE-2024-49082Windows File Explorer Information Disclosure VulnerabilityImportant
Windows IP Routing Management SnapinCVE-2024-49080Windows IP Routing Management Snapin Remote Code Execution VulnerabilityImportant
Windows KernelCVE-2024-49084Windows Kernel Elevation of Privilege VulnerabilityImportant
Windows Kernel-Mode DriversCVE-2024-49074Windows Kernel-Mode Driver Elevation of Privilege VulnerabilityImportant
Windows LDAP – Lightweight Directory Access ProtocolCVE-2024-49121Windows Lightweight Directory Access Protocol (LDAP) Denial of Service VulnerabilityImportant
Windows LDAP – Lightweight Directory Access ProtocolCVE-2024-49124Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution VulnerabilityCritical
Windows LDAP – Lightweight Directory Access ProtocolCVE-2024-49112Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution VulnerabilityCritical
Windows LDAP – Lightweight Directory Access ProtocolCVE-2024-49113Windows Lightweight Directory Access Protocol (LDAP) Denial of Service VulnerabilityImportant
Windows LDAP – Lightweight Directory Access ProtocolCVE-2024-49127Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution VulnerabilityCritical
Windows Local Security Authority Subsystem Service (LSASS)CVE-2024-49126Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution VulnerabilityCritical
Windows Message QueuingCVE-2024-49118Microsoft Message Queuing (MSMQ) Remote Code Execution VulnerabilityCritical
Windows Message QueuingCVE-2024-49122Microsoft Message Queuing (MSMQ) Remote Code Execution VulnerabilityCritical
Windows Message QueuingCVE-2024-49096Microsoft Message Queuing (MSMQ) Denial of Service VulnerabilityImportant
Windows Mobile BroadbandCVE-2024-49073Windows Mobile Broadband Driver Elevation of Privilege VulnerabilityImportant
Windows Mobile BroadbandCVE-2024-49077Windows Mobile Broadband Driver Elevation of Privilege VulnerabilityImportant
Windows Mobile BroadbandCVE-2024-49083Windows Mobile Broadband Driver Elevation of Privilege VulnerabilityImportant
Windows Mobile BroadbandCVE-2024-49092Windows Mobile Broadband Driver Elevation of Privilege VulnerabilityImportant
Windows Mobile BroadbandCVE-2024-49087Windows Mobile Broadband Driver Information Disclosure VulnerabilityImportant
Windows Mobile BroadbandCVE-2024-49110Windows Mobile Broadband Driver Elevation of Privilege VulnerabilityImportant
Windows Mobile BroadbandCVE-2024-49078Windows Mobile Broadband Driver Elevation of Privilege VulnerabilityImportant
Windows PrintWorkflowUserSvcCVE-2024-49095Windows PrintWorkflowUserSvc Elevation of Privilege VulnerabilityImportant
Windows PrintWorkflowUserSvcCVE-2024-49097Windows PrintWorkflowUserSvc Elevation of Privilege VulnerabilityImportant
Windows Remote DesktopCVE-2024-49132Windows Remote Desktop Services Remote Code Execution VulnerabilityCritical
Windows Remote Desktop ServicesCVE-2024-49115Windows Remote Desktop Services Remote Code Execution VulnerabilityCritical
Windows Remote Desktop ServicesCVE-2024-49116Windows Remote Desktop Services Remote Code Execution VulnerabilityCritical
Windows Remote Desktop ServicesCVE-2024-49123Windows Remote Desktop Services Remote Code Execution VulnerabilityCritical
Windows Remote Desktop ServicesCVE-2024-49129Windows Remote Desktop Gateway (RD Gateway) Denial of Service VulnerabilityImportant
Windows Remote Desktop ServicesCVE-2024-49075Windows Remote Desktop Services Denial of Service VulnerabilityImportant
Windows Remote Desktop ServicesCVE-2024-49128Windows Remote Desktop Services Remote Code Execution VulnerabilityCritical
Windows Remote Desktop ServicesCVE-2024-49106Windows Remote Desktop Services Remote Code Execution VulnerabilityCritical
Windows Remote Desktop ServicesCVE-2024-49108Windows Remote Desktop Services Remote Code Execution VulnerabilityCritical
Windows Remote Desktop ServicesCVE-2024-49119Windows Remote Desktop Services Remote Code Execution VulnerabilityCritical
Windows Remote Desktop ServicesCVE-2024-49120Windows Remote Desktop Services Remote Code Execution VulnerabilityCritical
Windows Resilient File System (ReFS)CVE-2024-49093Windows Resilient File System (ReFS) Elevation of Privilege VulnerabilityImportant
Windows Routing and Remote Access Service (RRAS)CVE-2024-49085Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityImportant
Windows Routing and Remote Access Service (RRAS)CVE-2024-49086Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityImportant
Windows Routing and Remote Access Service (RRAS)CVE-2024-49089Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityImportant
Windows Routing and Remote Access Service (RRAS)CVE-2024-49125Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityImportant
Windows Routing and Remote Access Service (RRAS)CVE-2024-49104Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityImportant
Windows Routing and Remote Access Service (RRAS)CVE-2024-49102Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityImportant
Windows Task SchedulerCVE-2024-49072Windows Task Scheduler Elevation of Privilege VulnerabilityImportant
Windows Virtualization-Based Security (VBS) EnclaveCVE-2024-49076Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege VulnerabilityImportant
Windows Wireless Wide Area Network ServiceCVE-2024-49081Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege VulnerabilityImportant
Windows Wireless Wide Area Network ServiceCVE-2024-49103Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure VulnerabilityImportant
Windows Wireless Wide Area Network ServiceCVE-2024-49111Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege VulnerabilityImportant
Windows Wireless Wide Area Network ServiceCVE-2024-49109Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege VulnerabilityImportant
Windows Wireless Wide Area Network ServiceCVE-2024-49101Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege VulnerabilityImportant
Windows Wireless Wide Area Network ServiceCVE-2024-49094Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege VulnerabilityImportant
Windows Wireless Wide Area Network ServiceCVE-2024-49098Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure VulnerabilityImportant
Windows Wireless Wide Area Network ServiceCVE-2024-49099Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure VulnerabilityImportant
WmsRepair ServiceCVE-2024-49107WmsRepair Service Elevation of Privilege VulnerabilityImportant

Leave a Reply

Your email address will not be published. Required fields are marked *

Website https://geekfeed.net

Related Posts