Bleeping Computer

Microsoft October 2023 Patch Tuesday fixes 3 zero-days, 104 flaws

6 min read
Share X / Twitter LinkedIn Reddit WhatsApp


TagCVE IDCVE TitleSeverityActive Directory Domain ServicesCVE-2023-36722Active Directory Domain Services Information Disclosure VulnerabilityImportantAzureCVE-2023-36737Azure Network Watcher VM Agent Elevation of Privilege VulnerabilityImportantAzureCVE-2023-36419Azure HDInsight Apache Oozie Workflow Scheduler Elevation of Privilege VulnerabilityImportantAzure DevOpsCVE-2023-36561Azure DevOps Server Elevation of Privilege VulnerabilityImportantAzure Real Time Operating SystemCVE-2023-36418Azure RTOS GUIX Studio Remote Code Execution VulnerabilityImportantAzure SDKCVE-2023-36414Azure Identity SDK Remote Code Execution VulnerabilityImportantAzure SDKCVE-2023-36415Azure Identity SDK Remote Code Execution VulnerabilityImportantClient Server Run-time Subsystem (CSRSS)CVE-2023-41766Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege VulnerabilityImportantHTTP/2CVE-2023-44487MITRE: CVE-2023-44487 HTTP/2 Rapid Reset AttackImportantMicrosoft Common Data Model SDKCVE-2023-36566Microsoft Common Data Model SDK Denial of Service VulnerabilityImportantMicrosoft DynamicsCVE-2023-36429Microsoft Dynamics 365 (On-Premises) Information Disclosure VulnerabilityImportantMicrosoft DynamicsCVE-2023-36416Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityImportantMicrosoft DynamicsCVE-2023-36433Microsoft Dynamics 365 (On-Premises) Information Disclosure VulnerabilityImportantMicrosoft Edge (Chromium-based)CVE-2023-5346Chromium: CVE-2023-5346 Type Confusion in V8UnknownMicrosoft Exchange ServerCVE-2023-36778Microsoft Exchange Server Remote Code Execution VulnerabilityImportantMicrosoft Graphics ComponentCVE-2023-36594Windows Graphics Component Elevation of Privilege VulnerabilityImportantMicrosoft Graphics ComponentCVE-2023-38159Windows Graphics Component Elevation of Privilege VulnerabilityImportantMicrosoft OfficeCVE-2023-36565Microsoft Office Graphics Elevation of Privilege VulnerabilityImportantMicrosoft OfficeCVE-2023-36569Microsoft Office Elevation of Privilege VulnerabilityImportantMicrosoft OfficeCVE-2023-36568Microsoft Office Click-To-Run Elevation of Privilege VulnerabilityImportantMicrosoft QUICCVE-2023-38171Microsoft QUIC Denial of Service VulnerabilityImportantMicrosoft QUICCVE-2023-36435Microsoft QUIC Denial of Service VulnerabilityImportantMicrosoft WDAC OLE DB provider for SQLCVE-2023-36577Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution VulnerabilityImportantMicrosoft Windows Media FoundationCVE-2023-36710Windows Media Foundation Core Remote Code Execution VulnerabilityImportantMicrosoft Windows Search ComponentCVE-2023-36564Windows Search Security Feature Bypass VulnerabilityImportantMicrosoft WordPadCVE-2023-36563Microsoft WordPad Information Disclosure VulnerabilityImportantSkype for BusinessCVE-2023-36786Skype for Business Remote Code Execution VulnerabilityImportantSkype for BusinessCVE-2023-36780Skype for Business Remote Code Execution VulnerabilityImportantSkype for BusinessCVE-2023-36789Skype for Business Remote Code Execution VulnerabilityImportantSkype for BusinessCVE-2023-41763Skype for Business Elevation of Privilege VulnerabilityImportantSQL ServerCVE-2023-36728Microsoft SQL Server Denial of Service VulnerabilityImportantSQL ServerCVE-2023-36417Microsoft SQL ODBC Driver Remote Code Execution VulnerabilityImportantSQL ServerCVE-2023-36785Microsoft ODBC Driver for SQL Server Remote Code Execution VulnerabilityImportantSQL ServerCVE-2023-36598Microsoft WDAC ODBC Driver Remote Code Execution VulnerabilityImportantSQL ServerCVE-2023-36730Microsoft ODBC Driver for SQL Server Remote Code Execution VulnerabilityImportantSQL ServerCVE-2023-36420Microsoft ODBC Driver for SQL Server Remote Code Execution VulnerabilityImportantWindows Active Template LibraryCVE-2023-36585Active Template Library Denial of Service VulnerabilityImportantWindows AllJoyn APICVE-2023-36709Microsoft AllJoyn API Denial of Service VulnerabilityImportantWindows Client/Server Runtime SubsystemCVE-2023-36902Windows Runtime Remote Code Execution VulnerabilityImportantWindows Common Log File System DriverCVE-2023-36713Windows Common Log File System Driver Information Disclosure VulnerabilityImportantWindows Container Manager ServiceCVE-2023-36723Windows Container Manager Service Elevation of Privilege VulnerabilityImportantWindows Deployment ServicesCVE-2023-36707Windows Deployment Services Denial of Service VulnerabilityImportantWindows Deployment ServicesCVE-2023-36567Windows Deployment Services Information Disclosure VulnerabilityImportantWindows Deployment ServicesCVE-2023-36706Windows Deployment Services Information Disclosure VulnerabilityImportantWindows DHCP ServerCVE-2023-36703DHCP Server Service Denial of Service VulnerabilityImportantWindows Error ReportingCVE-2023-36721Windows Error Reporting Service Elevation of Privilege VulnerabilityImportantWindows HTML PlatformCVE-2023-36436Windows MSHTML Platform Remote Code Execution VulnerabilityImportantWindows HTML PlatformCVE-2023-36557PrintHTML API Remote Code Execution VulnerabilityImportantWindows IISCVE-2023-36434Windows IIS Server Elevation of Privilege VulnerabilityImportantWindows IKE ExtensionCVE-2023-36726Windows Internet Key Exchange (IKE) Extension Elevation of Privilege VulnerabilityImportantWindows KernelCVE-2023-36576Windows Kernel Information Disclosure VulnerabilityImportantWindows KernelCVE-2023-36712Windows Kernel Elevation of Privilege VulnerabilityImportantWindows KernelCVE-2023-36698Windows Kernel Security Feature Bypass VulnerabilityImportantWindows Layer 2 Tunneling ProtocolCVE-2023-41770Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityCriticalWindows Layer 2 Tunneling ProtocolCVE-2023-41765Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityCriticalWindows Layer 2 Tunneling ProtocolCVE-2023-41767Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityCriticalWindows Layer 2 Tunneling ProtocolCVE-2023-38166Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityCriticalWindows Layer 2 Tunneling ProtocolCVE-2023-41774Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityCriticalWindows Layer 2 Tunneling ProtocolCVE-2023-41773Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityCriticalWindows Layer 2 Tunneling ProtocolCVE-2023-41771Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityCriticalWindows Layer 2 Tunneling ProtocolCVE-2023-41769Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityCriticalWindows Layer 2 Tunneling ProtocolCVE-2023-41768Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityCriticalWindows Mark of the Web (MOTW)CVE-2023-36584Windows Mark of the Web Security Feature Bypass VulnerabilityImportantWindows Message QueuingCVE-2023-36571Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36570Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36431Microsoft Message Queuing Denial of Service VulnerabilityImportantWindows Message QueuingCVE-2023-35349Microsoft Message Queuing Remote Code Execution VulnerabilityCriticalWindows Message QueuingCVE-2023-36591Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36590Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36589Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36583Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36592Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36697Microsoft Message Queuing Remote Code Execution VulnerabilityCriticalWindows Message QueuingCVE-2023-36606Microsoft Message Queuing Denial of Service VulnerabilityImportantWindows Message QueuingCVE-2023-36593Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36582Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36574Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36575Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36573Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36572Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Message QueuingCVE-2023-36581Microsoft Message Queuing Denial of Service VulnerabilityImportantWindows Message QueuingCVE-2023-36579Microsoft Message Queuing Denial of Service VulnerabilityImportantWindows Message QueuingCVE-2023-36578Microsoft Message Queuing Remote Code Execution VulnerabilityImportantWindows Microsoft DirectMusicCVE-2023-36702Microsoft DirectMusic Remote Code Execution VulnerabilityImportantWindows Mixed Reality Developer ToolsCVE-2023-36720Windows Mixed Reality Developer Tools Denial of Service VulnerabilityImportantWindows Named Pipe File SystemCVE-2023-36729Named Pipe File System Elevation of Privilege VulnerabilityImportantWindows Named Pipe File SystemCVE-2023-36605Windows Named Pipe Filesystem Elevation of Privilege VulnerabilityImportantWindows NT OS KernelCVE-2023-36725Windows Kernel Elevation of Privilege VulnerabilityImportantWindows Power Management ServiceCVE-2023-36724Windows Power Management Service Information Disclosure VulnerabilityImportantWindows RDPCVE-2023-36790Windows RDP Encoder Mirror Driver Elevation of Privilege VulnerabilityImportantWindows RDPCVE-2023-29348Windows Remote Desktop Gateway (RD Gateway) Information Disclosure VulnerabilityImportantWindows Remote Procedure CallCVE-2023-36596Remote Procedure Call Information Disclosure VulnerabilityImportantWindows Resilient File System (ReFS)CVE-2023-36701Microsoft Resilient File System (ReFS) Elevation of Privilege VulnerabilityImportantWindows Runtime C++ Template LibraryCVE-2023-36711Windows Runtime C++ Template Library Elevation of Privilege VulnerabilityImportantWindows Setup Files CleanupCVE-2023-36704Windows Setup Files Cleanup Remote Code Execution VulnerabilityImportantWindows TCP/IPCVE-2023-36438Windows TCP/IP Information Disclosure VulnerabilityImportantWindows TCP/IPCVE-2023-36603Windows TCP/IP Denial of Service VulnerabilityImportantWindows TCP/IPCVE-2023-36602Windows TCP/IP Denial of Service VulnerabilityImportantWindows TPMCVE-2023-36717Windows Virtual Trusted Platform Module Denial of Service VulnerabilityImportantWindows Virtual Trusted Platform ModuleCVE-2023-36718Microsoft Virtual Trusted Platform Module Remote Code Execution VulnerabilityCriticalWindows Win32KCVE-2023-36731Win32k Elevation of Privilege VulnerabilityImportantWindows Win32KCVE-2023-36732Win32k Elevation of Privilege VulnerabilityImportantWindows Win32KCVE-2023-36776Win32k Elevation of Privilege VulnerabilityImportantWindows Win32KCVE-2023-36743Win32k Elevation of Privilege VulnerabilityImportantWindows Win32KCVE-2023-41772Win32k Elevation of Privilege VulnerabilityImportant



Source link

Share X / Twitter LinkedIn Reddit WhatsApp

Related Articles

All Bleeping Computer →