Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Dec 2023 Monthly Patch
Monthly Patch

Dec 2023 Monthly Patch

13 December 2023

Microsoft has released security patches to address multiple vulnerabilities in their software and products.

The vulnerabilities that have been classified as Critical in severity are listed in the table below.

For the full list of security patches released by Microsoft, please refer to

https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2023-Dec

Critical vulnerabilities

CVE Number

CVE Name

Base Score

Reference

CVE-2023-36019

Microsoft Power Platform Connector Spoofing Vulnerability

9.6

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-36019

CVE-2023-35641

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

8.8

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-35641

CVE-2023-35630

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

8.8

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-35630

CVE-2023-35628

Windows MSHTML Platform Remote Code Execution Vulnerability

8.1

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-35628