Microsoft has released a new patch. This fixes five zero-day bugs and 58 bugs.

The second Tuesday of the month has passed and that means a new security patch from Microsoft. This month, the company fixed nearly 60 bugs and five zero-days Patch Tuesday.

Big mistake

There are patches for fifteen RCE bugs (Remote code execution), one of which is considered critical by Microsoft. It can be found in Windows Internet Connection Sharing (ICS).

A patch is now also available for two other serious bugs. The first is a vulnerability that allows attackers to steal credentials from GitHub Actions or Azure DevOps logs via the Azure CLI (Command line interface). The other is a Hyper-V flaw that allows hackers to run programs.

5ive

Of the five zero days, three are publicly known and three are being actively exploited. Microsoft considers a bug a zero-day if it is publicly disclosed or if there is active exploitation without an official fix.

The three zero-days exploited are:

• CVE-2023-36036 – Windows Cloud Files Mini Filter elevation of privilege vulnerability that could allow an attacker to gain SYSTEM privileges
• CVE-2023-36033 – Windows DWM Core Library Elevation of Privilege vulnerability, another flaw that could allow an attacker to gain SYSTEM privileges
• CVE-2023-36025 – Windows SmartScreen security feature bypass vulnerability that allows an attacker to bypass Windows Defender SmartScreen

To round off the list of five days, there are the other two zero days. There is CVE-2023-36413 (Microsoft Office Security Feature Bypass Vulnerability) and also CVE-2023-36038 (ASP.NET Core Denial of Service Vulnerability). However, these errors were not exploited.

This month, Microsoft also released the eighth version of its open source development platform .NET. There was also news that Copilot would be coming to Windows 10 after all.