Microsoft Releases May 2024 Security Updates - 20240515002

wagov · May 15, 2024 · 889b4c8 · 889b4c8
1 parent 5eb82ea
commit 889b4c8
Showing 1 changed file with 25 additions and 0 deletions.
diff --git a/docs/advisories/20240515002-Microsoft-Security-Updates-May-2024.md b/docs/advisories/20240515002-Microsoft-Security-Updates-May-2024.md
@@ -0,0 +1,25 @@
+# Microsoft Releases May 2024 Security Updates - 20240515002
+
+## Overview
+
+Microsoft has released security updates to address vulnerabilities in multiple products. A Cyber threat actor could leverage some of these vulnerabilities to exploit the affected system.
+
+## What is vulnerable?
+
+This release consists of the following 60 Microsoft CVEs:
+
+- [May 2024 Security Updates](https://msrc.microsoft.com/update-guide/releaseNote/2024-May)
+
+## What has been observed?
+
+There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.
+
+## Recommendation
+
+The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of *two weeks* (refer [Patch Management](../guidelines/patch-management.md)).
+
+## Additional References
+
+- [CISA - Microsoft Releases May 2024 Security Updates
+    ](https://www.cisa.gov/news-events/alerts/2024/05/14/microsoft-releases-may-2024-security-updates)
+- [QakBot attacks with Windows zero-day](https://securelist.com/cve-2024-30051/112618/)