[Zero-day] Microsoft's September 2024 Patch Tuesday fixes 4 zero-day vulnerabilities

Hello folks,

This is to notify you that 4 zero-day vulnerabilities have been fixed in this month's Patch Tuesday. Below, you can find the CVE and Patch ID details.

Vulnerable Component	Impact	CVE ID
Windows Mark of the Web (MOTW)	Security feature bypass	CVE-2024-38217
Microsoft Publisher	Security feature bypass	CVE-2024-38226
Windows Installer	Elevation of privilege	CVE-2024-38014
Microsoft Windows Update	Remote Code Execution Vulnerability	CVE-2024-43491

These patches can be deployed to your endpoints seamlessly, using one of the following methods:

Note: Kindly ensure that a Vulnerability DB sync has been initiated and completed successfully before proceeding.

Method 1:

a. On the console, navigate to Patches > Missing Patches and create a filter.

b. The criterion for the filter should be: CVE ID - equal - <CVE ID of the respective vulnerability>.

c. Once done, the missing patches in your network, corresponding to the particular CVE ID will be listed below.

Method 2:

a. Navigate to Patches > Top-Priority Patches.

b. Select the required patches via the Patch ID.

c. Click on Install/Publish Patches to deploy them.

Here is a list of the patch IDs corresponding to the vulnerabilities:

CVE-2024-38217 and CVE-2024-38014

Patch ID	Bulletin ID	Description
39634	MS24-SEP2	2024-09 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5043092) (ESU) (CVE-2024-38217) (CVE-2024-38014)
39635	MS24-SEP2	2024-09 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5043087) (ESU) (CVE-2024-38217) (CVE-2024-38014)
39636	MS24-SEP2	2024-09 Security Only Quality Update for Windows Server 2008 for x86-based Systems (KB5043087) (ESU) (CVE-2024-38217) (CVE-2024-38014)
39637	MS24-SEP3	2024-09 Cumulative Update for Windows 11 Version 22H2 for x64-based Systems (KB5043076) (CVE-2024-38217) (CVE-2024-38014)
39640	MS24-SEP3	2024-09 Cumulative Update for Windows 11 Version 23H2 for x64-based Systems (KB5043076) (CVE-2024-38217) (CVE-2024-38014)
39641	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 22H2 for x86-based Systems (KB5043064) (CVE-2024-38217) (CVE-2024-38014)
39642	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 22H2 for x64-based Systems (KB5043064) (CVE-2024-38217) (CVE-2024-38014)
39643	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 21H2 for x86-based Systems (KB5043064) (CVE-2024-38217) (CVE-2024-38014)
39644	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5043064) (CVE-2024-38217) (CVE-2024-38014)
39646	MS24-SEP3	2024-09 Cumulative Update for Windows 11 for x64-based Systems (KB5043067) (CVE-2024-38217) (CVE-2024-38014)
39647	MS24-SEP3	2024-09 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5042881) (CVE-2024-38217) (CVE-2024-38014)
39648	MS24-SEP3	2024-09 Cumulative Update for Windows Server 2019 for x64-based Systems (KB5043050) (CVE-2024-38217) (CVE-2024-38014)
39649	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5043050) (CVE-2024-38217) (CVE-2024-38014)
39650	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 1809 for x86-based Systems (KB5043050) (CVE-2024-38217) (CVE-2024-38014)
39651	MS24-SEP3	2024-09 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5043051) (CVE-2024-38217) (CVE-2024-38014)
39652	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB5043051) (CVE-2024-38217) (CVE-2024-38014)
39653	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 1607 for x86-based Systems (KB5043051) (CVE-2024-38217) (CVE-2024-38014)
39654	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 1507 for x64-based Systems (KB5043083) (CVE-2024-43491) (CVE-2024-38217) (CVE-2024-38014)
39655	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 1507 for x86-based Systems (KB5043083) (CVE-2024-38217) (CVE-2024-38014) (CVE-2024-43491)
39656	MS24-SEP6	2024-09 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB5043129) (ESU) (CVE-2024-38217) (CVE-2024-38014)
39657	MS24-SEP6	2024-09 Security Monthly Quality Rollup for Windows Server 2008 for x86-based Systems (KB5043135) (ESU) (CVE-2024-38217) (CVE-2024-38014)
39658	MS24-SEP6	2024-09 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5043135) (ESU) (CVE-2024-38217) (CVE-2024-38014)
39659	MS24-SEP6	2024-09 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems (KB5043138) (ESU) (CVE-2024-38217) (CVE-2024-38014)
39660	MS24-SEP6	2024-09 Security Monthly Quality Rollup for Windows Server 2012 for x64-based Systems (KB5043125) (ESU) (CVE-2024-38217) (CVE-2024-38014)

CVE-2024-43491

Patch ID	Bulletin ID	Description
39654	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 1507 for x64-based Systems (KB5043083) (CVE-2024-43491) (CVE-2024-38217) (CVE-2024-38014)
39655	MS24-SEP3	2024-09 Cumulative Update for Windows 10 Version 1507 for x86-based Systems (KB5043083) (CVE-2024-38217) (CVE-2024-38014) (CVE-2024-43491)

CVE-2024-38226

Patch ID	Bulletin ID	Description
39682	MS24-SEP7	Security Update for Microsoft Publisher 2016 (KB5002566) 64-Bit Edition
39683	MS24-SEP7	Security Update for Microsoft Publisher 2016 (KB5002566) 32-Bit Edition
39690	MS21-O365C	Update for Microsoft 365 Apps for Business Current Channel for x64 2408 of version (17928.20156)
39692	MS21-O365C	Update for Microsoft 365 Apps for Business Current Channel for x86 2408 of version (17928.20156)
39694	MS21-O365C	Update for Microsoft 365 Apps for Enterprise Current Channel for x64 2408 of version (17928.20156)
39696	MS21-O365C	Update for Microsoft 365 Apps for Enterprise Current Channel for x86 2408 of version (17928.20156)
39698	MS21-O365M	Update for Microsoft 365 Apps for Monthly Enterprise Channel for x64 2407 of version (17830.20210)
39700	MS21-O365M	Update for Microsoft 365 Apps for Monthly Enterprise Channel for x86 version 2407 (17830.20210)
39702	MS21-O365M	Update for Microsoft 365 Apps for Business Monthly Enterprise Channel for x64 2407 of version (17830.20210)
39704	MS21-O365M	Update for Microsoft 365 Apps for Business Monthly Enterprise Channel for x86 version 2407 (17830.20210)
39706	MS21-O365S	Update for Microsoft 365 Apps for Business Semi Annual Channel for x64 2402 of version (17328.20588)
39708	MS21-O365S	Update for Microsoft 365 Apps for Business Semi Annual Channel for x86 2402 of version (17328.20588)
39710	MS21-O365S	Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2402 of version (17328.20588)
39712	MS21-O365S	Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2402 of version (17328.20588)
39714	MS21-O365SP	Update for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x64 2408 of version (17928.20156)
39716	MS21-O365SP	Update for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x86 2408 of version (17928.20156)
39718	MS21-O2019V	Update for Office 2019 for x64 1808 of volume version (10414.20002)
39720	MS21-O2019V	Update for Office 2019 for x86 1808 of volume version (10414.20002)
39722	MS21-O2019R	Update for Office 2019 for x64 2408 Retail Version (17928.20156)
39724	MS21-O2019R	Update for Office 2019 for x86 2408 Retail Version (17928.20156)
39726	MS21-O2021V	Update for Office 2021 for x64 2108 of volume version (14332.20771)
39728	MS21-O2021V	Update for Office 2021 for x86 2108 of volume version (14332.20771)
39730	MS21-O2021R	Update for Office 2021 for x64 2408 of Retail Version (17928.20156)
39732	MS21-O2021R	Update for Office 2021 for x86 2408 of Retail Version (17928.20156)
39734	MS24-O2016H	Update for Office 2016 for x86 2408 Retail Version (17928.20156)
39736	MS24-O2016H	Update for Office 2016 for x64 2408 Retail Version (17928.20156)