Patch Tuesday
Yesterday was Microsoft Patch Tuesday and late into the evening Microsoft released their updates.
Microsoft has released 63 updates for multiple products this month – including five Critical severity vulnerabilities, and one which is being actively exploited in the wild.
The most important patch is:
CVE-2022-37969 (Actively Exploited) is an Privilege Escalation vulnerability in the Windows Common Log File System (CLFS) Driver. An attack exploiting this vulnerability can gain SYSTEM account privileges. CVSS 3.1: 7.8 (High)
The 63 vulnerabilities patched this month break down as follows:
- 30 Remote Code Execution
- 18 Privilege Escalation
- 16 Edge – Chromium (various)
- 7 Denial of Service
- 7 Information Disclosure
- 1 Security Feature Bypass
Affected Products
.NET and Visual Studio
.NET Framework
Azure Arc
Cache Speculation
HTTP.sys
Microsoft Dynamics
Microsoft Edge (Chromium-based)
Microsoft Graphics Component
Microsoft Office
Microsoft Office SharePoint
Microsoft Office Visio
Microsoft Windows ALPC
Microsoft Windows Codecs Library
Network Device Enrollment Service (NDES)
Role: DNS Server
Role: Windows Fax Service
SPNEGO Extended Negotiation
Visual Studio Code
Windows Common Log File System Driver
Windows Credential Roaming Service
Windows Defender
Windows Distributed File System (DFS)
Windows DPAPI (Data Protection Application Programming Interface)
Windows Enterprise App Management
Windows Event Tracing
Windows Group Policy
Windows IKE Extension
Windows Kerberos
Windows Kernel
Windows LDAP – Lightweight Directory Access Protocol
Windows ODBC Driver
Windows OLE
Windows Photo Import API
Windows Print Spooler Components
Windows Remote Access Connection Manager
Windows Remote Procedure Call
Windows TCP/IP
Windows Transport Security Layer (TLS)