CISA has added two Microsoft Defender vulnerabilities to its Known Exploited Vulnerabilities catalog after reports of active exploitation.
The U.S. Cybersecurity and Infrastructure Security Agency CISA has added two Microsoft Defender vulnerabilities to its Known Exploited Vulnerabilities catalog after they were reportedly exploited in active attacks.
The vulnerabilities affect Microsoft Defender components, including the Microsoft Malware Protection Engine and Microsoft Defender Antimalware Platform. According to reports, one vulnerability could allow local privilege escalation, while the other could cause a denial-of-service condition.
Microsoft has released updates to address the issues, and affected systems are expected to receive fixes through normal Defender update mechanisms. However, users and organizations are still advised to verify that Microsoft Defender is updated to the latest version.
CISA’s KEV catalog is used to highlight vulnerabilities that are known to be exploited in real attacks. When a vulnerability is added to the catalog, it usually signals that organizations should treat it as a high-priority patching item.
The issue is especially important because Microsoft Defender is widely used across Windows devices in personal, business, and government environments.
Source: TechRadar / CISA reporting.