US government warns federal agencies to patch dangerous Windows kernel bug
Posted by:
John Harrison
US Cybersecurity and Infrastructure Agency (CISA) recently identified and added two critical vulnerabilities to their Known Exploited Vulnerabilities (KEV) catalog, urging federal agencies to update their systems promptly. The first flaw, a Microsoft Windows Kernel-Mode Driver vulnerability (CVE-2024-35250), allows attackers to gain system privileges without user interaction. Meanwhile, the second vulnerability affects Adobe ColdFusion versions 2023.6 and 2021.12, posing a risk of unauthorized access to sensitive files. Both vulnerabilities require immediate action to mitigate potential cyber threats, as highlighted by CISA. Agencies have until January 6, 2025, to apply the necessary patches.
Recent Posts1
12 Days of OpenAI ends with a new model for the new year
December 22, 2024
Only 15% of Steam users have played games released in 2024, but why?
December 22, 2024
