Microsoft Advises to Patch Now to Address Critical Remote Code Execution Vulnerability for MS-RPC

Action Recommended: Members are strongly encouraged to advise their system administrators to address Microsoft security updates for April 2022. This month’s round of patches includes a critical remote code execution (RCE) vulnerability for an extremely important component of the operating system that allows for arbitrary code execution without authentication or user interaction. System administrators are encouraged to review Microsoft’s advisory to address CVE-2022-26809 and apply the recommended mitigations.

Microsoft’s advisory addresses a critical remote code execution vulnerability in Remote Procedure Call Runtime Library (MS-RPC). A remote, unauthenticated attacker could exploit this vulnerability to take control of an affected system. At this time there is no known exploitation, but that could change soon. Sysadmins can find additional analysis and information about this vulnerability from the SANS Internet Storm Center.