On-demand webinar: Building a secure and employee-centric digital workplace

WATCH NOW

Microsoft Patch Tuesday August 2024 - Summary

180

Patches

89

Vulnerabilities

38

Articles

7

Impacts

CVE Index for August 2024 Patch Tuesday Updates

Vulnerable Component Impact CVE ID
Azure Health Bot Elevation of Privilege CVE-2024-38109
Heap-based out-of-bounds write when rendering certain Unicode sequences Remote Code Execution CVE-2022-3775
Shim RCE in HTTP boot support may lead to secure boot bypass Security Feature Bypass CVE-2023-40547
Windows TCP/IP Remote Code Execution CVE-2024-38063
Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution CVE-2024-38140
Windows Network Virtualization Remote Code Execution CVE-2024-38159
Windows Network Virtualization Remote Code Execution CVE-2024-38160
Vulnerable Component Impact CVE ID
Windows Ancillary Function Driver for WinSock Elevation of Privilege CVE-2024-38193
Scripting Engine Memory Corruption Vulnerability Remote Code Execution CVE-2024-38178
Windows Kernel Elevation of Privilege CVE-2024-38106
Windows Mark of the Web Security Feature Bypass CVE-2024-38213
Windows Power Dependency Coordinator Elevation of Privilege CVE-2024-38107
Microsoft Project Remote Code Execution CVE-2024-38189
Windows Line Printer Daemon (LPD) Service Remote Code Execution CVE-2024-38199
Windows Secure Kernel Mode Elevation of Privilege CVE-2024-21302
Microsoft Office Spoofing CVE-2024-38200
Windows Update Stack Elevation of Privilege CVE-2024-38202
Vulnerable Component CVE ID
Microsoft Dynamics
  1. CVE-2024-38211
Developer Tools
  1. CVE-2024-38157
  2. CVE-2024-38158
  3. CVE-2024-38167
  4. CVE-2024-38168
Mariner
  1. CVE-2022-2601
  2. CVE-2022-3775
Apps
  1. CVE-2024-38177

Previous Patch Tuesday Updates and Fixes

Microsoft Windows Patch Tuesday - Overview

What is Patch Tuesday?

Patch Tuesday, the colloquial term for Microsoft's Update Tuesday that falls on second Tuesday of every month. That is when Microsoft rolls out patch updates to improve security of Microsoft applications. Coinciding with the Patch Tuesday it is also a general trend for the roll out of patch updates for other third party applications that include Adobe and Mozilla, among many others.

When is Patch Tuesday?

Patch Tuesday falls on the second Tuesday of each month. The upcoming Patch Tuesday is on September 10, 2024.

What is patching and why is it important?

Patches are nothing but pieces of software code that are written to fix a bug in a software application, that might lead to a vulnerability. Such vulnerabilities in any application are loop holes for attackers to get their hands on business critical data and information. So it is highly crucial to keep all the applications in a network updated to its latest versions. Updating applications in mobile phones and laptops also work in the same manner by preventing theft of personal data, through security flaws.

What kind of patch updates are released during Patch Tuesday?

Predominantly security patch updates of varying severity like Critical, Important, Moderate & Low are labeled and released. It is always a best practice to prioritize your patching based on the severity level mentioned.

What are CVE IDs?

CVE ID - Common Vulnerabilities and Exposure ID is a format in which each vulnerability is disclosed and cataloged in the National Vulnerability Database (NVD). You can look up for a detailed explanation of each vulnerability in the NVD with the help of CVE ID. In Patch Manager Plus you can make use of these CVE IDs to fetch the appropriate patches to deploy. You can find the CVE IDs here.

How to register for ManageEngine's Free Patch Tuesday webinar?

The upcoming Free Patch Tuesday webinar by ManageEngine is scheduled on -. You can make your registrations here.

Where can I find more details about individual bulletins?

Each CVE ID listed in the CVE Index section has been linked to its security advisory.