Microsoft has released security patches to address multiple vulnerabilities in their software and products.
The vulnerabilities that have been classified as Critical in severity are listed in the table below.
Microsoft has also released a security patch for a Denial of Service (DoS) vulnerability (CVE-2023-38180) impacting Visual Studio, .NET versions 6.0 and 7.0, and ASP.NET Core 2.1. The vulnerability is reportedly being actively exploited. Successful exploitation of this vulnerability could allow an attacker to create a DoS condition on a vulnerable server. Users and administrators of affected product versions are advised to upgrade to the latest versions immediately.
More information of the vulnerability is available at:
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-38180
For the full list of security patches released by Microsoft, please refer to https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2023-Aug
Critical vulnerabilities
CVE Number | CVE Name | Base Score | Reference |
---|---|---|---|
CVE-2023-36911 | Microsoft Message Queuing Remote Code Execution Vulnerability | 9.8 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-36911 |
CVE-2023-36910 | Microsoft Message Queuing Remote Code Execution Vulnerability | 9.8 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-36910 |
CVE-2023-35385 | Microsoft Message Queuing Remote Code Execution Vulnerability | 9.8 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-35385 |
CVE-2023-29330 | Microsoft Teams Remote Code Execution Vulnerability | 8.8 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-29330 |
CVE-2023-29328 | Microsoft Teams Remote Code Execution Vulnerability | 8.8 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-29328 |
CVE-2023-36895 | Microsoft Outlook Remote Code Execution Vulnerability | 7.8 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-36895 |