Microsoft Releases November 2024 Security Updates for Vulnerabilities

Microsoft addresses 90 vulnerabilities in November 2024 Patch Tuesday. This month’s update includes patches for four zero-day vulnerabilities, two of which are actively exploited in the wild. Notably, CVE-2024-49019 affects Active Directory Certificate Services, allowing attackers to gain domain admin privileges. Additionally, critical remote code execution vulnerabilities in .NET and Kerberos have been identified, with CVSSv3 base scores of 9.8 and 9.8, respectively. Microsoft emphasizes the importance of immediate patching to mitigate potential risks associated with these vulnerabilities.