Microsoft’s February 2024 Patch Tuesday Addresses 73 CVEs

On February 13, Microsoft published its February 2024 Patch Tuesday release which patched 73 CVEs with five rated as critical, 66 rated as important and two rated as moderate.

This month, Microsoft patched two zero-day security feature bypass vulnerabilities that were exploited in the wild: CVE-2024-21351 in Windows SmartScreen and CVE-2024-21412 in Internet Shortcut Files.

This month’s update includes patches for:

• .NET
• Azure Active Directory
• Azure Connected Machine Agent
• Azure DevOps
• Azure File Sync
• Azure Site Recovery
• Azure Stack
• Internet Shortcut Files
• Microsoft ActiveX
• Microsoft Azure Kubernetes Service
• Microsoft Defender for Endpoint
• Microsoft Dynamics
• Microsoft Edge (Chromium-based)
• Microsoft Exchange Server
• Microsoft Office
• Microsoft Office OneNote
• Microsoft Office Outlook
• Microsoft Office Word
• Microsoft Teams for Android
• Microsoft WDAC ODBC Driver
• Microsoft WDAC OLE DB provider for SQL
• Microsoft Windows
• Microsoft Windows DNS
• Role: DNS Server
• SQL Server
• Skype for Business
• Trusted Compute Base
• Windows Hyper-V
• Windows Internet Connection Sharing (ICS)
• Windows Kernel
• Windows LDAP - Lightweight Directory Access Protocol
• Windows Message Queuing
• Windows OLE
• Windows SmartScreen
• Windows USB Serial Driver
• Windows Win32K - ICOMP

For more information, please visit our blog.