HKCert
  

Microsoft Monthly Security Update (Oct 2020)

Release Date: 14 / 10 / 2020
Last Update: 16 / 10 / 2020
Risk Level:  


Microsoft has released monthly security update for their products:

 

Vulnerable ProductRisk LevelImpactsNotes
Extended Security Updates (ESU)Medium Risk Medium RiskDenial of Service
Information Disclosure
Remote Code Execution
Elevation of Privilege
Spoofing
 
WindowsHigh Risk High RiskElevation of Privilege
Information Disclosure
Remote Code Execution
Spoofing
Denial of Service
Security Restriction Bypass
[Updated 15-Oct-2020]: Proof-of-concept code is publicly available for CVE-2020-16898.
Microsoft OfficeHigh Risk High RiskRemote Code Execution
Elevation of Privilege
Security Restriction Bypass
Information Disclosure
Spoofing
Denial of Service
[Updated 16-Oct-2020]: Proof-of-concept code is publicly available for CVE-2020-16947.
AppsMedium Risk Medium RiskRemote Code Execution 
Exchange ServerMedium Risk Medium RiskInformation Disclosure 
Developer ToolsMedium Risk Medium RiskRemote Code Execution
Security Restriction Bypass
Information Disclosure
 
Microsoft DynamicsMedium Risk Medium RiskElevation of Privilege
Spoofing
 
OtherMedium Risk Medium RiskRemote Code Execution 

 

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 2

Number of 'Medium Risk' product(s): 6

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': High Risk

  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure
  • Spoofing
  • Extended Security Updates (ESU)
  • Windows
  • Microsoft Office
  • Apps
  • Exchange Server
  • Developer Tools
  • Microsoft Dynamics
  • Other

 Before installation of the software, please visit the vendor web-site for more details.

  •  Apply fixes issued by the vendor.
  •  Microsoft