Security News > 2022 > May > Actively Exploited Zero-Day Bug Patched by Microsoft

Microsoft has revealed 73 new patches for May's monthly update of security fixes, including a patch for one flaw-a zero-day Windows LSA Spoofing Vulnerability rated as "Important"-that is currently being exploited with man-in-the-middle attacks.

The software giant's monthly update of patches that comes out every second Tuesday of the month-known as Patch Tuesday-also included fixes for seven "Critical" flaws, 65 others rated as "Important," and one rated as "Low."

The remainder of the flaws also include a high percentage of RCE and EoP bugs, with the former accounting for 32.9 percent of the flaws patched this month, while the latter accounted for 28.8 percent of fixes, according to a blog post by researchers at Tenable.

One is tracked as CVE-2022-29972 and is found in Insight Software's Magnitude Simba Amazon Redshift ODBC Driver, and would need to be patched by a cloud provider-something organizations should follow up on, Liska said.

At the same time, Microsoft characterized the ease of exploitation of these vulnerabilities as "Exploitation More Likely," as was the case with a similar vulnerability, CVE-2021-26432, an actively exploited zero day in the TCP/IP protocol stack in Windows server that was patched in August 2021.

The vulnerability, discovered by Akamai researcher Ben Barnea, takes advantage of three RPC runtime library flaws that Microsoft had patched in April-CVE-2022-26809, CVE-2022-24492 and CVE-2022-24528, he revealed in a blog post Tuesday.

News URL

https://threatpost.com/microsoft-zero-day-mays-patch-tuesday/179579/