Skip to main content
Customer Support Customer Support

CVEs have been published or revised in the Security Update Guide January 11, 2024

TripleHelix
Moderator
Forum|alt.badge.img+63

These common vulnerabilities and exposures (CVEs) were recently published or revised in the Microsoft Security Update Guide:

CVE-2023-48631

· Title: Adobe Systems Incorporated: CVE-2023-Improper Input Validation Denial of Service Vulnerability

· Version: 1.0

· Reason for revision: Information published.

· Originally released: January 11, 2024

· Last updated: January 11, 2024

· Aggregate CVE Severity Rating: Moderate

CVE-2024-0333

· Title: Chromium: CVE-2024-0333 Insufficient data validation in Extensions

· Version: 1.0

· Reason for revision: Information published.

· Originally released: January 11, 2024

· Last updated: January 11, 2024

· Aggregate CVE Severity Rating:

CVE-2024-20674

· Title: Windows Kerberos Security Feature Bypass Vulnerability

· Version: 1.1

· Reason for revision: Updated FAQ information. This is an informational change only.

· Originally released: January 9, 2024

· Last updated: January 9, 2024

· Aggregate CVE Severity Rating: Critical

CVE-2024-20675

· Title: Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

· Version: 1.0

· Reason for revision: Information published.

· Originally released: January 11, 2024

· Last updated: January 11, 2024

· Aggregate CVE Severity Rating: Low

CVE-2024-20709

· Title: Adobe Systems Incorporated: CVE-2024-20709 Javascript Implementation PDF Vulnerability

· Version: 1.0

· Reason for revision: Information published.

· Originally released: January 11, 2024

· Last updated: January 11, 2024

· Aggregate CVE Severity Rating: Low

CVE-2024-21307

· Title: Remote Desktop Client Remote Code Execution Vulnerability

· Version: 2.0

· Reason for revision: In the Security Updates table, added Remote Desktop client for Windows Desktop as it is also affected by this vulnerability. Customers running Remote Desktop client for Windows Desktop should ensure that they have version 1.2.5105.0 or higher to be protected from this vulnerability.

· Originally released: January 9, 2024

· Last updated: January 10, 2024

· Aggregate CVE Severity Rating: Important

Daniel - Microsoft MVP Consumer Security (2012-2016) Windows 10 Pro x64 for Workstations 22H2 on my Alienware 17R2 and Alienware 17R5 Laptops with Webroot SecureAnywhere Complete Beta Tester for PC & Android Moto G9 Plus OS 11. "Take Them to the Train Station" ¯\_(ツ)_/¯

0 replies

Be the first to reply!

Reply


Terms & Conditions