Once again, micro-patching firm 0patch has beaten Microsoft to the punch, releasing an unofficial patch for a zero-day vulnerability in Windows. This time around we’re talking about CVE-2021-24084, a local privilege escalation (LPE) zero-day vulnerability in Windows’ Mobile Device Management service. The flaw affects Windows 10 version 1809 and later, and Microsoft is yet to release an official patch of its own. Not wanting to leave systems at risk of attack, 0patch stepped in to help out users by offering up a free fix. See also: Microsoft fixes problems that took GitHub offline KB5007205 update for Windows is breaking Microsoft… [Continue Reading]
Read more: betanews.com