So, without further ado, here’s the chart of MS patches that affect Windows platforms in the past month.
Patch data provided by: |
|||||
Technology |
Products Affected |
Severity |
Reference |
Workaround/ Exploited / Publicly Disclosed |
Vulnerability Info |
Windows |
Windows 10, 11 Server 2008 SP2, 2008 R2 SP1, 2012, 2012 R2, 2016, 2019, 2022 including Server Core Installations |
Critical |
CVE-2024-20659* |
Workaround: No Exploited: Yes Public: Yes* |
Denial of Service Elevation of Privilege Information Disclosure Remote Code Execution |
Edge |
Chromium-based |
Moderate |
CVE-2024-38221 |
Workaround: No |
Information Disclosure |
Office |
365 Apps for Enterprise |
Important |
CVE-2024-38016 |
Workaround: No Exploited: No Public: No |
Elevation of Privilege |
SharePoint |
Enterprise Server 2016 |
Important |
Workaround: No Exploited: No Public: No |
Elevation of Privilege |
|
Dynamics 365 |
Business Central Online |
Critical |
Workaround: No |
Elevation of Privilege | |
SQL Server |
Power BI Report Server - May 2024 |
Important |
Workaround: No |
Spoofing | |
Azure |
Service Connector |
Important |
Workaround: No |
Elevation of Privilege |
|
Apps |
GroupMe |
Critical |
Workaround: No |
Elevation of Privilege |
|
.NET |
6.0 & 8.0 for Windows, Linux & Mac OS |
Important |
Workaround: No |
Denial of Service |
|
.NET Framework |
2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.6, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1 |
Important |
Workaround: No |
Denial of Service |
|
Visual Studio |
2015 Update 3 |
Critical |
CVE-2024-38229 |
Workaround: No |
Denial of Service |
Dev Tools |
DeepSpeed |
Important |
Workaround: No |
Elevation of Privilege |
|
Mariner |
CBL Mariner 2.0 x64/ARM |
Important |
Workaround: No |
Remote Code Execution |
|
System Center |
MS Configuration Manager 2303, 2309, 2403 |
Critical |
Workaround: No |
Remote Code Execution |
|
Dev Tools |
DeepSpeed |
Important |
Workaround: No |
Elevation of Privilege |
Thanks as always for reading and best wishes on security,
Randy Franklin Smith
Click here to unsubscribeUltimate Windows Security is a division of Monterey Technology Group, Inc. ©2006-2024 Monterey Technology Group, All rights reserved. You may forward this email in its entirety but all other rights reserved.
9450 SW Gemini Drive #53822, Beaverton, OR 97008
Note: We do our best to provide quality information and expert commentary but use all information at your own risk.