Skip to main content

Microsoft Monthly Security Update (December 2022)

Release Date: 14 Dec 2022 6424 Views

RISK: High Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS

Microsoft has released monthly security update for their products:

 

Vulnerable ProductRisk LevelImpactsNotes
BrowserMedium Risk Medium RiskSpoofing
Elevation of Privilege
 
Microsoft DynamicsMedium Risk Medium RiskRemote Code Execution 
WindowsHigh Risk High RiskRemote Code Execution
Elevation of Privilege
Information Disclosure
Denial of Service
Security Restriction Bypass
CVE-2022-44698 is being exploited in the wild. Note: The attacker would have to convince a user to take action to exploit the vulnerability CVE-2022-44698, the risk level is rated as High Risk.
Extended Security Updates (ESU)Medium Risk Medium RiskRemote Code Execution
Elevation of Privilege
Denial of Service
Information Disclosure
 
Microsoft OfficeMedium Risk Medium RiskRemote Code Execution
Spoofing
 
AppsMedium Risk Medium RiskRemote Code Execution
Elevation of Privilege
 
Developer ToolsMedium Risk Medium RiskElevation of Privilege
Remote Code Execution
 
Open Source SoftwareMedium Risk Medium RiskElevation of Privilege 
AzureMedium Risk Medium RiskSecurity Restriction Bypass 

 

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 1

Number of 'Medium Risk' product(s): 8

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': High Risk


Impact

  • Denial of Service
  • Elevation of Privilege
  • Information Disclosure
  • Remote Code Execution
  • Spoofing
  • Security Restriction Bypass

System / Technologies affected

  • Browser
  • Microsoft Dynamics
  • Windows
  • Extended Security Updates (ESU)
  • Microsoft Office
  • Apps
  • Developer Tools
  • Open Source Software
  • Azure

Solutions

Before installation of the software, please visit the vendor web-site for more details.

  •  Apply fixes issued by the vendor.

Vulnerability Identifier


Source


Related Link