Kategorie: Allgemein

Patchday: Angreifer attackieren unter anderem Microsoft Word

Microsoft hat für Windows & Co. wichtige Sicherheitsupdates veröffentlicht. Zwei Lücken nutzen Angreifer bereits aus.

CVE-2023-36800 Dynamics Finance and Operations Cross-site Scripting Vulnerability

Information published.

CVE-2023-36762 Microsoft Word Remote Code Execution Vulnerability

Information published.

Chromium: CVE-2023-4863 Heap buffer overflow in WebP

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.

CVE-2023-38142 Windows Kernel Elevation of Privilege Vulnerability

Information published.

CVE-2023-36777 Microsoft Exchange Server Information Disclosure Vulnerability

Information published. This CVE was addressed by updates that were released in August 2023, but the CVE was inadvertently omitted from the August 2023 Security Updates. Microsoft strongly recommends that customers running affected versions of Microsoft Exchange Server install the August 2023 updates to be protected from this vulnerability.

CVE-2023-36767 Microsoft Office Security Feature Bypass Vulnerability

Information published.

CVE-2023-38139 Windows Kernel Elevation of Privilege Vulnerability

Information published.

CVE-2023-36763 Microsoft Outlook Information Disclosure Vulnerability

Information published.

CVE-2023-36761 Microsoft Word Information Disclosure Vulnerability

Information published.

©  2026 Leibling.de. Erstellt mit WordPress und dem Highlight Theme