Microsoft patch tuesday October 2023
October 11, 2023
Microsoft has released patches for patch Tuesday that addresses 103 flaws which 2 are being exploited in the wild. 12 are rated critical. 45 are remote code execution, 26 elevation of privilege, 16 denial of service, 12 information closure and 3 security feature bypass.
There are 2 zero-days flagged by Microsoft:
- CVE-2023-36563 (CVSS3.1 score: 6.5 Medium) “Microsoft WordPad Information Disclosure Vulnerability”: an unauthenticated remote attacker can exploit this vulnerability through social engineering in order to convince a user to open a link or download a tampered file and run it on the endpoint. The attacker could also exploit this vulnerability through the use of a application that was crafted to gain access to the vulnerable system. If exploited successfully New Technology LAN Manager (NTLM) hashes.
- CVE-2023-36778 (CVSS3.1 score: 8.0 High) “Microsoft Exchange Server Remote Code Execution Vulnerability”: a vulnerability is discovered in the Microsoft exchange server, this remote code execution is possible with a remote PowerShell session. The cause of this vulnerability is because of improper validation of cmdlet arguments.
Microsoft has released the patches on 10 October to address these vulnerabilities. More information here.