November Patch Tuesday

The top priority for the November 2024 Patch Tuesday is the Windows OS update to resolve two known exploited CVEs (CVE-2024-49039 and CVE-2024-43451).

For organizations running Microsoft Exchange Server you will also want to prioritize this month’s Exchange Server update which resolves a Publicly Disclosed vulnerability (CVE-2024-49040) which included proof-of-concept exploit code making it a much more likely risk that threat actors will take advantage and target this vulnerability.