In a recent Forbes article, Tyler Reguly, Associate Director of Security R&D at Fortra, highlights the importance of addressing CVE-2024-43468, a critical vulnerability rated 9.8/10. This flaw affects Microsoft Configuration Manager and can allow unauthenticated attackers to execute commands on your servers.
Tyler warns that mitigating this vulnerability is far from simple. It requires specific in-console updates and manual actions that, if overlooked, can lead to vulnerable environments.
Read the article.
Originally published in Forbes.
Excerpt: “Microsoft itself rated CVE-2024-43468 as a critical vulnerability, despite it not being flagged as either publicly disclosed or exploited in the wild, which means it’s not a zero-day threat. The reason it is being taken so seriously is that it impacts Microsoft’s Configuration Manager and can remotely execute code if exploited successfully.”