New 0Day Exploit has critics confused about it's rating, but one thing is certain, it's DANGEROUS.
Microsoft Windows has just issued an alert to ALL WINDOWS USERS, including Windows 7, 8.1, 10, 11, and Windows Server 2008, 2012, 2016, 2019, and 2022, to immediately update their software and systems.
This security threat, also known as CVE-2022-22047 has just been added to the Cybersecurity & Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities Catalog. Although this past Tuesday Microsoft released their rollout of security patches for the 84 known security issues requiring fixing, 4 of these issues have been classified as "critical" in nature, with one standing out in particular as needing the most urgent attention.
CVE-2022-22047 has already been exploited by attackers, making this security issue something of utmost importance to remediate. The reason this individual security patch is so important is because this issue, when left unfixed, can lead to total system exploitation, giving the hacker complete control of a Windows endpoint, and an avenue in which they can pair with other attacks.
According to a "Zero Day Initiative Analysis" of the latest Patch Tuesday security update, CVE-2022-22047 is exactly the kind of security vulnerability that is "typically paired with a code execution bug, usually a specially crafted Office or Adobe document, to take over a system."
And with CISA ORDERING Federal agencies to patch their systems by August 2nd, you know that it's extremely critical that you, too, take care of this before it spirals into an attack you cannot control. Prioritizing timely remediation of Catalog vulnerabilities as a part of their cyber security best practices can help greatly reduce your exposure to cyber attacks.
Got questions? Reach out to us here at Tekie Geek!