Microsoft have released a security advisory on the 11th of October 2023 in line with their regular monthly patch schedule which includes a number of updates to address two (2) Extremely High Risk, One (1) High Risk, five (5) Medium Risk and one (1) Low Risk product vulnerabilities.
These updates address vulnerabilities which may impact services through Denial of Service, Elevation of Privilege, Remote Code Execution, Security Restriction Bypass, Information Disclosure and Spoofing.
For more information please see: Microsoft Security Update
This release consists of security updates for the following products, features and roles:
CVE-2023-36563 – Microsoft WordPad Information Disclosure Vulnerability is being exploited in the wild.
CVE-2023-44487 – MITRE: CVE-2023-44487 HTTP/2 Rapid Reset Attack is being exploited in the wild.
CVE-2023-41763 – Microsoft WordPad Information Disclosure Vulnerability is being exploited in the wild
Matsco recommends any affected systems are updated as soon as convenient.
Please contact the Matsco Solutions team on the below if you would like any further information or would like to schedule a maintenance.
Beijing +86 400 120 2782
Hong Kong +852 8101 8418
London +44 (0)20 7821 4950
New York +1 866 446 9226
Singapore +65 6100 1090
Share this Post