Numerous privilege escalation flaws addressed in latest Microsoft Patch Tuesday release.
Patch Tuesday may be headed for Valhalla in the summer, but that doesn’t mean Microsoft will stop plugging holes until it does. The April 2022 Patch Tuesday was just released, and it features more than 100 fixes to serious bugs. All in all,128 vulnerabilities were addressed, in a number of Microsoft products, including Windows, the antivirus tool Defender, Office, and many others. Of all the bugs,10 were rated as “critical”, while the majority (115) as “important”. Three are “moderate”, one “publicly known”, and one “actively exploited”. The actively exploited one is tracked as CVE-2022-24521, and is an elevation of privilege vulnerability found in the Windows Common Log File System (CLFS).
