March 2023 Monthly Patch

Published on 15 Mar 2023 | Updated on 15 Mar 2023

Microsoft has released security patches to address multiple vulnerabilities in their software and products.

The vulnerabilities that have been classified as Critical in severity are listed in the table below.

For the full list of security patches released by Microsoft, please refer to https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2023-Mar

CRITICAL VULNERABILITIES

CVE Number	CVE Name	Base Score	Reference
CVE-2023-21708	Remote Procedure Call Runtime Remote Code Execution Vulnerability	9.8	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21708
CVE-2023-23397	Microsoft Outlook Elevation of Privilege Vulnerability	9.8	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-23397
CVE-2023-23415	Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability	9.8	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-23415
CVE-2023-23392	HTTP Protocol Stack Remote Code Execution Vulnerability	9.8	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-23392
CVE-2023-1018	CERT/CC: CVE-2023-1018 TPM2.0 Module Library Elevation of Privilege Vulnerability	8.8	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-1018
CVE-2023-1017	CERT/CC: CVE-2023-1017 TPM2.0 Module Library Elevation of Privilege Vulnerability	8.8	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-1017
CVE-2023-23416	Windows Cryptographic Services Remote Code Execution Vulnerability	8.4	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-23416
CVE-2023-23404	Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability	8.1	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-23404
CVE-2023-23411	Windows Hyper-V Denial of Service Vulnerability	6.5	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-23411