Skip to main content

CSA will never ask you to transfer money or disclose banking details. Stay vigilant.

If unsure, call the 24/7 ScamShield Helpline at 1799 to check. www.scamshield.gov.sg

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Dec 2023 Monthly Patch
Monthly Patch

Dec 2023 Monthly Patch

13 December 2023

Microsoft has released security patches to address multiple vulnerabilities in their software and products.

The vulnerabilities that have been classified as Critical in severity are listed in the table below.

For the full list of security patches released by Microsoft, please refer to

https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2023-Dec

Critical vulnerabilities

CVE Number

CVE Name

Base Score

Reference

CVE-2023-36019

Microsoft Power Platform Connector Spoofing Vulnerability

9.6

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-36019

CVE-2023-35641

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

8.8

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-35641

CVE-2023-35630

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

8.8

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-35630

CVE-2023-35628

Windows MSHTML Platform Remote Code Execution Vulnerability

8.1

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-35628

Back to top