August Patch Tuesday Signals Urgency for Immediate Updates

Microsoft rolled out a total of 90 patches this week during its latest Patch Tuesday release for August. These patches address vulnerabilities, including repairs for five Windows zero-day issues (CVE-2024-38178, CVE-2024-38193, CVE-2024-38213, CVE-2024-38106, CVE-2024-38107) and one zero-day problem impacting Office (CVE-2024-38189).

This situation necessitates an immediate call for action to apply the patches promptly for both Windows and Microsoft Office this month. Microsoft has presented a variety of pragmatic solutions and suggestions to mitigate the risks posed by these security flaws. Our testing strategy aligns with these recommendations, particularly focusing on the network-related functionalities within Windows.

Any incremental updates for the Microsoft development frameworks can be seamlessly integrated into your routine patch deployment schedule. Notably, Microsoft did not issue any updates for Microsoft SQL Server or Exchange Server. On the other hand, Adobe Reader updates are now available again, which we anticipate will be included in the standard Patch Now release cycle for your Windows desktop system.

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts