The Indian computer emergency response team under the TI Ministry has issued a new warning for Windows operating system users.
Middle severity warning is for Windows 10 users, Windows Server and the new Windows 11 operating system launched.
As per warning, vulnerabilities have been reported in Windows DNS servers that can be exploited by attackers to execute the Arbitrary code on the targeted system.
Further warnings reveal that this vulnerability is in Windows DNS server because of defects in the DNS server component.
Remote striker can exploit this vulnerability by sending special-made requests.
Successful exploitation of this vulnerability can allow attackers to execute the arbitrary code in the targeted system.
To avoid exploitation, users must immediately install the latest updates released by Microsoft.
The official website of the Indian computer emergency response has a link that can guide you to the update page for the application mentioned above.
Here is the right version of Windows 10, Windows Server and Windows 11 are at risk.
Windows 10 Version 21H2 For X64-Based Systems Windows 10 Version 21H2 For ARM64 Windows 10 Version 21H2 Based System for 32-bit Windows 10 Version 20H2 systems for ARM64 Windows 10 Version 20H2-based systems for Windows 10 20H2 32-bit systems for Windows-based systems based 10 Version 21H1 for 32-bit system Windows 10 Version 21H1 for ARM64 Windows 10 Version 21H1 Based System for X64 Windows 10 version 1909 for AMM64 Windows 10 version 1909-based systems for Windows Based Windows 10 version 1909 for 32-bit Windows systems For the Windows 11 ARM64 based system for the X64 server-based Windows system, version 20H2 (Server Core Installation) Windows Server 2022 Azure Edition Core Hotpatch Windows Server 2022 (Server Core Installation) Windows Server 2022 Apart from this, Cert-in has also issued a warning Google Chrome browser users.
As per warning, some vulnerabilities have been reported on Google Chrome which can allow long-distance striker to execute arbitrary code, Bypass Limit Security or cause refusal of service conditions on targeted systems.