Search

CERT-In Warns Users of Multiple Vulnerabilities in Different Versions of Microsoft Windows OS

CERT-In highlighted that no security patches for the vulnerabilities are available currently.

Advertisement
Highlights
  • One of the vulnerabilities was found in the Windows Backup
  • Another one exists in Virtualisation Based Security
  • Recently, CERT-In found vulnerabilities in older Apple software
CERT-In Warns Users of Multiple Vulnerabilities in Different Versions of Microsoft Windows OS

Microsoft has recommended specific actions for users to safeguard themselves

Photo Credit: Unsplash/Windows

The Indian Computer Emergency Response Team (CERT-In) has issued an advisory regarding multiple vulnerabilities affecting Microsoft's Windows operating systems. Two separate vulnerabilities were found in various builds of Windows 10, Windows 11, and Windows Server, the company's platform for running network-based applications. The cybersecurity agency has flagged these vulnerabilities as medium risk. While no security patches for them exist currently, Microsoft has released a set of actions users can take to safeguard themselves. Notably, CERT-In highlighted several security flaws in older Apple operating systems earlier this month.

CERT-In Issues Advisory for Microsoft Windows OS

In an advisory issued on Monday (August 12), the cybersecurity agency highlighted two different vulnerabilities in Windows OS. These security flaws can allow an attacker to gain unauthorised privileges on the targeted system.

“These vulnerabilities exist in Windows-based systems supporting Virtualization Based Security (VBS) and Windows Backup. An attacker with appropriate privileges could exploit these vulnerabilities to reintroduce previously mitigated issues or bypass VBS protections,” said CERT-In.

The two vulnerabilities have been labelled CVE-2024-21302 and CVE-2024-38202 by the nodal agency, which comes under the Ministry of Electronics and Information Technology (MeitY). Here, CVE stands for common vulnerabilities and exposures, and the format is a standardised method of identifying and describing security flaws in software. The full list of affected Windows software is shared below.

  • Windows Server 2016 (Server Core installation)
  • Windows Server 2016
  • Windows 10 Version 1607 for x64-based Systems
  • Windows 10 Version 1607 for 32-bit Systems
  • Windows 10 for x64-based Systems
  • Windows 10 for 32-bit Systems
  • Windows 11 Version 24H2 for x64-based Systems
  • Windows 11 Version 24H2 for ARM64-based Systems
  • Windows Server 2022, 23H2 Edition (Server Core installation)
  • Windows 11 Version 23H2 for x64-based Systems
  • Windows 11 Version 23H2 for ARM64-based Systems
  • Windows 10 Version 22H2 for 32-bit Systems
  • Windows 10 Version 22H2 for ARM64-based Systems
  • Windows 10 Version 22H2 for x64-based Systems
  • Windows 11 Version 22H2 for x64-based Systems
  • Windows 11 Version 22H2 for ARM64-based Systems
  • Windows 10 Version 21H2 for x64-based Systems
  • Windows 10 Version 21H2 for ARM64-based Systems
  • Windows 10 Version 21H2 for 32-bit Systems
  • Windows 11 version 21H2 for ARM64-based Systems
  • Windows 11 version 21H2 for x64-based Systems
  • Windows Server 2022 (Server Core installation)
  • Windows Server 2022
  • Windows Server 2019 (Server Core installation)
  • Windows Server 2019
  • Windows 10 Version 1809 for ARM64-based Systems
  • Windows 10 Version 1809 for x64-based Systems
  • Windows 10 Version 1809 for 32-bit Systems

As per the advisory, currently, there are no security patches available for the security flaws. While this presents a concerning situation, the scope of the vulnerability is not very wide as the attacker needs to hold some privilege within the system before exploiting these flaws.

Microsoft has also posted a set of recommended actions for each of the vulnerabilities to help users mitigate the potential for an attack. The tech giant has also highlighted that the CVE will be updated and the users will be notified once a security update is ready to be shipped.

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

 
Show Full Article
Please wait...
Advertisement

Related Stories

Popular Mobile Brands
  1. OnePlus Nord 5, OnePlus Nord CE 5 Launched in India at These Prices
  2. AI+ Pulse, AI+ Nova 5G With 50-Megapixel Rear Cameras Launched in India
  3. AI+ Nova 5G, Pulse Phones India Launch Today: How to Watch Live Event
  4. OnePlus Nord 5 Review
  5. OnePlus Buds 4 With Up to 45 Hours of Total Battery Life Launched in India
  6. Samsung Smart Monitor M9 Launched in India Alongside Updated M8, M7 Models
  7. OnePlus 13 to Get a Price Cut During Amazon Prime Day 2025 Sale
  8. Apple Releases iOS 26 Beta 3 Update for iPhone With These New Features
  9. Google Pixel 10 Series Colour and Storage Options Leaked
  10. Bitchat Is a New Messaging App Which Works Without Phone Numbers
  1. Oppo Reno 14 Launched in New Finish With Temperature-Sensitive Colour Changing Rear Panel
  2. Microsoft Edge Can Now Load Websites Faster After Migration to WebUI 2.0, Says Company
  3. Samsung Galaxy S25 FE to Sport a 6.7-Inch Flexible OLED Display: Report
  4. ChatGPT Could Soon Get a Study Together Feature That Helps Users Learn New Topics
  5. OnePlus Buds 4 Launched in India With Adaptive ANC, Up to 45 Hours of Total Battery Life: Price, Features
  6. Amazon Prime Day 2025 Sale: OnePlus 13 Offer Price Revealed
  7. AiQ Wearbuds Smartwatch With Built-In TWS Earbuds, Blood Pressure Monitoring Launched in India
  8. Apple Loses Top AI Models Executive to Meta’s Hiring Spree
  9. OnePlus Nord 5, Nord CE 5 Launched in India With 50-Megapixel Rear Camera, OnePlus AI Features
  10. Honor X70 Confirmed to Launch on July 15; Battery, Charging Details Revealed
Gadgets 360 is available in
Download Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.
Trending Products »
Latest Tech News »