Today’s Microsoft Security Update includes the Microsoft Patch Tuesday checks in the NIRV 4.26.0 and Frontline Agent 1.63.0 releases.

  • Microsoft included fixes for 74 vulnerabilities in this release, including 6 rated as Critical.
  • Microsoft also released 2 security advisories this month with improvements related to defense in depth for Microsoft Office and the Memory Integrity System Readiness Scan Tool.
  • A couple of the vulnerability fixes and defense in depth improvements included in this release are related to vulnerabilities being exploited in the wild.
    • ADV230003
      • This advisory is for a defense in depth improvement for Microsoft Office to block the attack chain required for successful exploitation of CVE-2023-36884.
      • This CVE is being actively exploited by the Storm-0978 threat group (aka RomCom). More information about the exploit activity around CVE-2023-36884 can be found on here.
    • CVE-2023-38180
      • This CVE is for a Denial of Service vulnerability in .NET and Visual Studio that Microsoft indicated has been exploited but did not provide any additional details on the exploitation or attacks that used it.
CVE/AdvisoryTitleTagMicrosoft Severity RatingBase ScoreMicrosoft ImpactExploitedPublicly Disclosed
CVE-2023-29328Microsoft Teams Remote Code Execution VulnerabilityMicrosoft TeamsCritical8.8Remote Code ExecutionNoNo
CVE-2023-29330Microsoft Teams Remote Code Execution VulnerabilityMicrosoft TeamsCritical8.8Remote Code ExecutionNoNo
CVE-2023-35359Windows Kernel Elevation of Privilege VulnerabilityWindows KernelImportant7.8Elevation of PrivilegeNoNo
CVE-2023-35368Microsoft Exchange Remote Code Execution VulnerabilityMicrosoft Exchange ServerImportant8.8Remote Code ExecutionNoNo
CVE-2023-36865Microsoft Office Visio Remote Code Execution VulnerabilityMicrosoft Office VisioImportant7.8Remote Code ExecutionNoNo
CVE-2023-36866Microsoft Office Visio Remote Code Execution VulnerabilityMicrosoft Office VisioImportant7.8Remote Code ExecutionNoNo
CVE-2023-36869Azure DevOps Server Spoofing VulnerabilityAzure DevOpsImportant6.3SpoofingNoNo
CVE-2023-36873.NET Framework Spoofing Vulnerability.NET FrameworkImportant7.4SpoofingNoNo
CVE-2023-36876Reliability Analysis Metrics Calculation (RacTask) Elevation of Privilege VulnerabilityReliability Analysis Metrics Calculation EngineImportant7.1Elevation of PrivilegeNoNo
CVE-2023-36882Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution VulnerabilityMicrosoft WDAC OLE DB provider for SQLImportant8.8Remote Code ExecutionNoNo
ADV230003Microsoft Office Defense in Depth UpdateMicrosoft OfficeModerateN/ADefense in DepthYesYes
CVE-2023-36889Windows Group Policy Security Feature Bypass VulnerabilityWindows Group PolicyImportant5.5Security Feature BypassNoNo
CVE-2023-36898Tablet Windows User Interface Application Core Remote Code Execution VulnerabilityTablet Windows User InterfaceImportant7.8Remote Code ExecutionNoNo
CVE-2023-36899ASP.NET Elevation of Privilege VulnerabilityASP.NETImportant7.5Elevation of PrivilegeNoNo
CVE-2023-36900Windows Common Log File System Driver Elevation of Privilege VulnerabilityWindows Common Log File System DriverImportant7.8Elevation of PrivilegeNoNo
CVE-2023-36903Windows System Assessment Tool Elevation of Privilege VulnerabilityWindows System Assessment ToolImportant7.8Elevation of PrivilegeNoNo
CVE-2023-36904Windows Cloud Files Mini Filter Driver Elevation of Privilege VulnerabilityWindows Cloud Files Mini Filter DriverImportant7.8Elevation of PrivilegeNoNo
CVE-2023-36905Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure VulnerabilityWindows Wireless Wide Area Network ServiceImportant5.5Information DisclosureNoNo
CVE-2023-36906Windows Cryptographic Services Information Disclosure VulnerabilityWindows Cryptographic ServicesImportant5.5Information DisclosureNoNo
CVE-2023-36907Windows Cryptographic Services Information Disclosure VulnerabilityWindows Cryptographic ServicesImportant5.5Information DisclosureNoNo
CVE-2023-36908Windows Hyper-V Information Disclosure VulnerabilityRole: Windows Hyper-VImportant5.7Information DisclosureNoNo
CVE-2023-36909Microsoft Message Queuing Denial of Service VulnerabilityWindows Message QueuingImportant6.5Denial of ServiceNoNo
CVE-2023-36910Microsoft Message Queuing Remote Code Execution VulnerabilityWindows Message QueuingCritical9.8Remote Code ExecutionNoNo
CVE-2023-36911Microsoft Message Queuing Remote Code Execution VulnerabilityWindows Message QueuingCritical9.8Remote Code ExecutionNoNo
CVE-2023-36912Microsoft Message Queuing Denial of Service VulnerabilityWindows Message QueuingImportant7.5Denial of ServiceNoNo
CVE-2023-36913Microsoft Message Queuing Information Disclosure VulnerabilityWindows Message QueuingImportant6.5Information DisclosureNoNo
CVE-2023-36914Windows Smart Card Resource Management Server Security Feature Bypass VulnerabilityWindows Smart CardImportant5.5Security Feature BypassNoNo
CVE-2023-35376Microsoft Message Queuing Denial of Service VulnerabilityWindows Message QueuingImportant6.5Denial of ServiceNoNo
CVE-2023-38254Microsoft Message Queuing Denial of Service VulnerabilityWindows Message QueuingImportant6.5Denial of ServiceNoNo
CVE-2023-35377Microsoft Message Queuing Denial of Service VulnerabilityWindows Message QueuingImportant6.5Denial of ServiceNoNo
CVE-2023-35378Windows Projected File System Elevation of Privilege VulnerabilityWindows Projected File SystemImportant7Elevation of PrivilegeNoNo
CVE-2023-35379Reliability Analysis Metrics Calculation Engine (RACEng) Elevation of Privilege VulnerabilityWindows Reliability Analysis Metrics Calculation EngineImportant7.8Elevation of PrivilegeNoNo
CVE-2023-35380Windows Kernel Elevation of Privilege VulnerabilityWindows KernelImportant7.8Elevation of PrivilegeNoNo
CVE-2023-35381Windows Fax Service Remote Code Execution VulnerabilityWindows Fax and Scan ServiceImportant8.8Remote Code ExecutionNoNo
CVE-2023-35382Windows Kernel Elevation of Privilege VulnerabilityWindows KernelImportant7.8Elevation of PrivilegeNoNo
CVE-2023-35383Microsoft Message Queuing Information Disclosure VulnerabilityWindows Message QueuingImportant7.5Information DisclosureNoNo
CVE-2023-35384Windows HTML Platforms Security Feature Bypass VulnerabilityWindows HTML PlatformImportant5.4Security Feature BypassNoNo
CVE-2023-35385Microsoft Message Queuing Remote Code Execution VulnerabilityWindows Message QueuingCritical9.8Remote Code ExecutionNoNo
CVE-2023-35386Windows Kernel Elevation of Privilege VulnerabilityWindows KernelImportant7.8Elevation of PrivilegeNoNo
CVE-2023-35387Windows Bluetooth A2DP driver Elevation of Privilege VulnerabilityWindows Bluetooth A2DP driverImportant8.8Elevation of PrivilegeNoNo
CVE-2023-35389Microsoft Dynamics 365 On-Premises Remote Code Execution VulnerabilityMicrosoft DynamicsImportant6.5Remote Code ExecutionNoNo
CVE-2023-35393Azure Apache Hive Spoofing VulnerabilityAzure HDInsightsImportant4.5SpoofingNoNo
CVE-2023-35394Azure HDInsight Jupyter Notebook Spoofing VulnerabilityAzure HDInsightsImportant4.6SpoofingNoNo
CVE-2023-38188Azure Apache Hadoop Spoofing VulnerabilityAzure HDInsightsImportant4.5SpoofingNoNo
CVE-2023-38186Windows Mobile Device Management Elevation of Privilege VulnerabilityWindows Mobile Device ManagementImportant7.8Elevation of PrivilegeNoNo
CVE-2023-38185Microsoft Exchange Server Remote Code Execution VulnerabilityMicrosoft Exchange ServerImportant8.8Remote Code ExecutionNoNo
CVE-2023-38184Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution VulnerabilityWindows LDAP – Lightweight Directory Access ProtocolImportant7.5Remote Code ExecutionNoNo
CVE-2023-38175Microsoft Windows Defender Elevation of Privilege VulnerabilityWindows DefenderImportant7.8Elevation of PrivilegeNoNo
CVE-2023-38172Microsoft Message Queuing Denial of Service VulnerabilityWindows Message QueuingImportant7.5Denial of ServiceNoNo
CVE-2023-38170HEVC Video Extensions Remote Code Execution VulnerabilityMicrosoft Windows Codecs LibraryImportant7.8Remote Code ExecutionNoNo
CVE-2023-38169Microsoft OLE DB Remote Code Execution VulnerabilitySQL ServerImportant8.8Remote Code ExecutionNoNo
CVE-2023-38167Microsoft Dynamics Business Central Elevation Of Privilege VulnerabilityDynamics Business Central ControlImportant7.2Elevation of PrivilegeNoNo
CVE-2023-21709Microsoft Exchange Server Elevation of Privilege VulnerabilityMicrosoft Exchange ServerImportant9.8Elevation of PrivilegeNoNo
CVE-2023-35371Microsoft Office Remote Code Execution VulnerabilityMicrosoft Office ExcelImportant7.8Remote Code ExecutionNoNo
CVE-2023-35372Microsoft Office Visio Remote Code Execution VulnerabilityMicrosoft Office VisioImportant7.8Remote Code ExecutionNoNo
CVE-2023-36877Azure Apache Oozie Spoofing VulnerabilityAzure HDInsightsImportant4.5SpoofingNoNo
CVE-2023-36881Azure Apache Ambari Spoofing VulnerabilityAzure HDInsightsImportant4.5SpoofingNoNo
CVE-2023-36890Microsoft SharePoint Server Information Disclosure VulnerabilityMicrosoft Office SharePointImportant6.5Information DisclosureNoNo
CVE-2023-36891Microsoft SharePoint Server Spoofing VulnerabilityMicrosoft Office SharePointImportant8SpoofingNoNo
CVE-2023-36892Microsoft SharePoint Server Spoofing VulnerabilityMicrosoft Office SharePointImportant8SpoofingNoNo
CVE-2023-36893Microsoft Outlook Spoofing VulnerabilityMicrosoft Office OutlookImportant6.5SpoofingNoNo
CVE-2023-36894Microsoft SharePoint Server Information Disclosure VulnerabilityMicrosoft Office SharePointImportant6.5Information DisclosureNoNo
CVE-2023-36895Microsoft Outlook Remote Code Execution VulnerabilityMicrosoft Office OutlookCritical7.8Remote Code ExecutionNoNo
CVE-2023-36896Microsoft Excel Remote Code Execution VulnerabilityMicrosoft Office ExcelImportant7.8Remote Code ExecutionNoNo
CVE-2023-36897Visual Studio Tools for Office Runtime Spoofing VulnerabilityMicrosoft OfficeImportant8.1SpoofingNoNo
CVE-2023-35388Microsoft Exchange Server Remote Code Execution VulnerabilityMicrosoft Exchange ServerImportant8Remote Code ExecutionNoNo
CVE-2023-20569AMD: CVE-2023-20569 Return Address PredictorMicrosoft WindowsImportantN/AInformation DisclosureNoNo
CVE-2023-35390.NET and Visual Studio Remote Code Execution Vulnerability.NET CoreImportant7.8Remote Code ExecutionNoNo
CVE-2023-35391ASP.NET Core SignalR and Visual Studio Information Disclosure VulnerabilityASP.NET and Visual StudioImportant7.1Information DisclosureNoNo
CVE-2023-38182Microsoft Exchange Server Remote Code Execution VulnerabilityMicrosoft Exchange ServerImportant8Remote Code ExecutionNoNo
CVE-2023-38181Microsoft Exchange Server Spoofing VulnerabilityMicrosoft Exchange ServerImportant8.8SpoofingNoNo
CVE-2023-38180.NET and Visual Studio Denial of Service VulnerabilityASP .NETImportant7.5Denial of ServiceYesNo
CVE-2023-38178.NET Core and Visual Studio Denial of Service Vulnerability.NET CoreImportant7.5Denial of ServiceNoNo
CVE-2023-38176Azure Arc-Enabled Servers Elevation of Privilege VulnerabilityAzure ArcImportant7Elevation of PrivilegeNoNo
CVE-2023-38154Windows Kernel Elevation of Privilege VulnerabilityWindows KernelImportant7.8Elevation of PrivilegeNoNo
ADV230004Memory Integrity System Readiness Scan Tool Defense in Depth UpdateMemory Integrity System Readiness Scan ToolModerateN/ADefense in DepthNoYes

See how Frontline Vulnerability Manager can help your team identify and prioritize vulnerabilities quickly and accelerate your time-to-remediation.

Watch this 3-minute video to learn more.

WATCH THE VIDEO