Microsoft November 2023 Patch – 5 zero-days, 58 flaws

Microsoft has released its November 2023 Patch Tuesday updates, addressing a total of 58 flaws, including five zero-day vulnerabilities. Among these, 14 remote code execution bugs were fixed, with only one rated as critical.

The critical flaws resolved in this release encompass an Azure information disclosure bug, a remote code execution issue in Windows Internet Connection Sharing (ICS), and a Hyper-V escape flaw allowing the execution of programs on the host with SYSTEM privileges.

The breakdown of vulnerabilities is as follows:

• 16 Elevation of Privilege Vulnerabilities
• 6 Security Feature Bypass Vulnerabilities
• 15 Remote Code Execution Vulnerabilities
• 6 Information Disclosure Vulnerabilities
• 5 Denial of Service Vulnerabilities
• 11 Spoofing Vulnerabilities

It’s important to note that the total count of 58 flaws excludes 5 Mariner security updates and 20 Microsoft Edge security updates released earlier this month. Stay informed and consider updating your systems to enhance security and protect against potential vulnerabilities.

https://www.bleepingcomputer.com/news/microsoft/microsoft-november-2023-patch-tuesday-fixes-5-zero-days-58-flaws/?fbclid=IwAR0NHgnlyHnA34rX0-KCe5_1e9piWxHt4YorD5ZKdngcQYvXUgRsNgFE3mI