Share this article
Latest news
With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low
Copilot in Outlook will generate personalized themes for you to customize the app
Microsoft will raise the price of its 365 Suite to include AI capabilities
Death Stranding Director’s Cut is now Xbox X|S at a huge discount
Outlook will let users create custom account icons so they can tell their accounts apart easier
Microsoft fixes 51 vulnerabilities in the June 2024 Patch Tuesday update
Update your system to receive the security updates as soon as possible
2 min. read
Published onJune 12, 2024
published onJune 12, 2024
Share this article
Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more
Microsoft has justpublishedits June 2024 Patch Tuesday, which resolves a total of 51 flaws with 18 being remote code execution (RCE) vulnerabilities. Apart from these, they have also fixed one publicly disclosed zero-day vulnerability that was indexed as CVE-2023-50868 and could lead to CPU exhaustion in Azure systems if successfully exploited by an attacker.
Within the 51 discovered vulnerabilities, there are 25 flaws for elevation of privilege, three weaknesses in information disclosure and five bugs causing denial of service. The 18 RCE flaws are found in different components of Windows such as kernel mode drivers, Windows Distributed File System (DFS), Microsoft Streaming Service (MSS), Microsoft WDAC OLE DB provider for SQL and Azure SDK.
What is the most important fix in the June security update?
Microsoft has resolved 18 critical vulnerabilities. However, only one vulnerability named CVE-2024-30080 is considered critical. This is because it’s a remote code execution vulnerability in Microsoft Message Queuing (MSMQ).
Apart from the important issues, Microsoft has resolved seven weaknesses in Microsoft Office that could have been used for distant code execution, such as bugs within Outlook and other programs like Word or Excel. There were also problems found in SharePoint and the Microsoft Streaming Service.
A serious elevation of privilege bug and RCE bugs were fixed for Microsoft Dynamics 365 Business Central enterprise resource planning platform as well as Microsoft Dynamics 365 (On-Premises) customer relationship management software. Also, Microsoft Speech Application Programming Interface (SAPI) has been patched for similar risks.
Furthermore, Microsoft has addressed a vulnerability in Windows Cloud Files Mini Filter Driver that could enable an intruder to evade the sandbox and raise their privileges. This is the second instance where this type of flaw has been resolved within past many months.
The flaw with the code number CVE-2024-30085 was fixed by Microsoft in May, yet it seems that the patch they provided was not enough. Microsoft also patched the same flaw, with code number CVE-2024-30085, in May but now it looks like this fix didn’t work well.
As usual, the most straightforward method for installing recent updates is to look up Windows Update in your search bar and choose the option Check for updates. If you like to do it yourself, find these upgrades onMicrosoft Update Catalog site.
What are your thoughts on the most recent Microsoft Patch Tuesday updates? Share them in the comments section.
Claudiu Andone
Windows Toubleshooting Expert
Oldtimer in the tech and science press, Claudiu is focused on whatever comes new from Microsoft.
His abrupt interest in computers started when he saw the first Home Computer as a kid. However, his passion for Windows and everything related became obvious when he became a sys admin in a computer science high school.
With 14 years of experience in writing about everything there is to know about science and technology, Claudiu also likes rock music, chilling in the garden, and Star Wars. May the force be with you, always!
User forum
0 messages
Sort by:LatestOldestMost Votes
Comment*
Name*
Email*
Commenting as.Not you?
Save information for future comments
Comment
Δ
Claudiu Andone
Windows Toubleshooting Expert
Oldtimer in the tech and science press, with 14 years of experience in writing on everything there is to know about science, technology, and Microsoft
