Microsoft released security updates to address an Important 0-Day vulnerability in Microsoft Windows Products. Successful exploitation of this vulnerability allows threat actors to steal a victim’s NTLMv2 hash and then use it to authenticate as the targeted user by performing pass-the-hash attacks.

For a complete description of the vulnerabilities and affected systems go to NTLM Hash Disclosure Spoofing Vulnerability New CVE-2024-43451 Security Vulnerability.