CERT-In Warns of Critical Windows Vulnerabilities

The Computer Emergency Response Team (CERT-In), part of the Ministry of Electronics and Information Technology, has issued a warning regarding two serious vulnerabilities affecting Windows operating systems. These security flaws could potentially allow attackers to gain elevated privileges on affected systems.

Details of the Vulnerabilities

In an advisory released on August 12 and updated on August 14, CERT-In highlighted that these vulnerabilities are present in Windows systems that support Virtualization Based Security (VBS) and Windows Backup. The advisory explains that attackers with the right access could exploit these issues to override previously fixed problems or bypass VBS protections. Successful exploitation could lead to unauthorized control over the target system.

Affected Windows Versions

The vulnerabilities impact a range of Windows versions, including:

• Windows 10: Versions 1607, 1809, 21H2, 22H2 (both x64-based and 32-bit systems)
• Windows 11: Versions 21H2, 22H2, 23H2 (both x64-based and ARM64-based systems)
• Windows Server: 2016, 2019, 2022 (including Server Core installations)

Solution

CERT-In advises Windows users to protect their systems by downloading and installing the latest security updates from Microsoft. These patches address the vulnerabilities and enhance system security.

Also read: IPO Alert: Things to know before investing in Orient Technologies Limited IPO

For more detailed information and to ensure your system is updated, visit the official Microsoft website.