Microsoft Patch Tuesday
Dark Lab on Mar 16 2023
Share:
On March 14 2023, Microsoft disclosed a total of 80 vulnerabilities in their monthly release of Patch Tuesday. Amongst the vulnerabilities disclosed, eight (8) are classified as critical vulnerabilities due to the nature of the vulnerabilities potentially allowing for remote code execution and/or elevation of privileges upon successful exploitation. In addition, we note there are two (2) actively exploited zero-day vulnerabilities fixed in the latest patch (CVE-2023-23397 and CVE-2023-24880), one of them was publicly disclosed.
CVE-2023-23397 has been reported to be leveraged by a Russia-based threat actor in targeted attacks against a limited number of organisations in government, transportation, energy, and military sectors across Europe. Similarly, the Magniber ransomware group have been observed to exploit the latest zero-day vulnerability (CVE-2023-24880).
It is recommended that organisations using affected products to apply the patches immediately. In particular, CVE-2023-23397 and CVE-2023-24880 should be remediated as soon as possible given their active exploitation by malicious actors.
https://msrc.microsoft.com/update-guide/
https://msrc.microsoft.com/blog/2023/03/microsoft-mitigates-outlook-elevation-of-privilege-vulnerability/
CVE-2023-23397 has been reported to be leveraged by a Russia-based threat actor in targeted attacks against a limited number of organisations in government, transportation, energy, and military sectors across Europe. Similarly, the Magniber ransomware group have been observed to exploit the latest zero-day vulnerability (CVE-2023-24880).
It is recommended that organisations using affected products to apply the patches immediately. In particular, CVE-2023-23397 and CVE-2023-24880 should be remediated as soon as possible given their active exploitation by malicious actors.
https://msrc.microsoft.com/update-guide/
https://msrc.microsoft.com/blog/2023/03/microsoft-mitigates-outlook-elevation-of-privilege-vulnerability/