Microsoft May 2023 Patch Tuesday

CybersecurityVulnerability Management
Written By RF Wave

Microsoft has released software updates today as part of its monthly Patch Tuesday.

A total of 38 vulnerabilities were fixed, including three zero-days, two of which are being actively exploited. The two actively exploited vulnerabilities are CVE-2023-29336, which is a privilege elevation vulnerability in the Win32K Kernel driver, and CVE-2023-24932, which is a vulnerability that allows an attacker to bypass Secure Boot.

Just last week, Microsoft released updates for its Edge browser.

Users are encouraged to prioritize patching the CVE-2023-29336 and CVE-2023-24932 flaws.

References

  • https://www.bleepingcomputer.com/news/microsoft/microsoft-may-2023-patch-tuesday-fixes-3-zero-days-38-flaws/

RF Wave
Previous

Apple Released iOS/iPadOS/tvOS 16.5 and macOS 13.4
Next

Canadian Centre for Cyber Security Issues Guidance on Security of Tech Products