The US CISA has added below vulnerabilities to the Known exploited vulnerabilities catalog based on the evidence of active exploitation. These vulnerabilities are part of this month microsoft patch tuesday
CVE-2024-38226
Microsoft Publisher Security Feature Bypass Vulnerability: Microsoft Publisher contains a security feature bypass vulnerability that allows attacker to bypass Office macro policies used to block untrusted or malicious files.
CVE-2024-43491
Microsoft Windows Update Remote Code Execution Vulnerability: Microsoft Windows Update contains an unspecified vulnerability that allows for remote code execution.
CVE-2024-38014
Microsoft Windows Installer Privilege Escalation Vulnerability : Microsoft Windows Installer contains a privilege escalation vulnerability that could allow an attacker to gain SYSTEM privileges.
CVE-2024-38217
Microsoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability: Microsoft Windows Mark of the Web (MOTW) contains a security feature bypass vulnerability that allows an attacker to bypass MOTW-based defenses. This can result in a limited loss of integrity and availability of security features such as Protected View in Microsoft Office, which rely on MOTW tagging.
CISA has provided a timeline as October 1, 2024 to all the federal agencies for remediating the vulnerabilities
