Microsoft has patched a critical vulnerability in Windows that can be exploited by tricking users to visit malicious websites. The flaw was found by Google’s Project Zero bug-hunting team. The vulnerability, CVE-2021-24093, is a remote code flaw in a Windows Graphics Component that affects multiple Windows 10 versions. Microsoft released a patch for the flaw on Tuesday, which has a CVSS score of 8.8 – considered critical. Microsoft says hackers can exploit the flaw to wage web-based attacks.”]
Source: https://www.cuinfosecurity.com/microsoft-patches-windows-remote-code-flaw-a-16075