Microsoft Patch Tuesday May 2023: Microsoft Edge, BlackLotus Secure Boot SFB, OLE RCE, Win32k EoP
Hello everyone! This episode will be about Microsoft Patch Tuesday for May 2023, including vulnerabilities that were added between April and May Patch Tuesdays.
As usual, I use my open source Vulristics project to analyse and prioritize vulnerabilities. I took the comments about the vulnerabilities from the Qualys, Tenable, Rapid7, ZDI Patch Tuesday reviews.
It’s been a long time since we’ve had such tiny Patch Tuesday. 57 CVEs, including CVEs appeared during the month. And only 38 without them! 😄
Urgent
00:45 Memory Corruption – Microsoft Edge (CVE-2023-2033)
Critical
01:17 Security Feature Bypass – Secure Boot (CVE-2023-24932)
02:55 Memory Corruption – Microsoft Edge (CVE-2023-2136)
High
03:11 Remote Code Execution – Windows OLE (CVE-2023-29325)
04:20 Elevation of Privilege – Windows Win32k (CVE-2023-29336)
05:19 Remote Code Execution – Windows Network File System (CVE-2023-24941)
06:07 Remote Code Execution – Windows Pragmatic General Multicast (PGM) (CVE-2023-24943)
06:58 Remote Code Execution – Windows Lightweight Directory Access Protocol (LDAP) (CVE-2023-28283)
07:31 Remote Code Execution – Microsoft SharePoint (CVE-2023-24955)
#BlackLotus #PatchTuesday #Microsoft #EoP #LDAP #MicrosoftEdge #NFS #OLE #PGM #RCE #SecureBoot #SharePoint #Win32k
6 days ago 00:54:27 22
2 weeks ago 00:35:36 3
3 weeks ago 00:14:05 45
4 weeks ago 00:16:34 618
4 weeks ago 00:10:43 1
1 month ago 00:10:48 21.1K
1 month ago 00:38:48 56
2 months ago 00:04:59 1
2 months ago 00:10:37 1
2 months ago 00:00:00 1
2 months ago 00:20:43 53
2 months ago 00:17:10 72
2 months ago 00:25:01 47
2 months ago 00:30:35 61
2 months ago 00:24:04 79
2 months ago 00:33:51 91
2 months ago 00:28:12 73
2 months ago 00:30:32 76
2 months ago 00:40:05 43
2 months ago 00:23:58 71
2 months ago 00:36:21 81
2 months ago 00:45:05 162
2 months ago 00:22:34 20.5K
2 months ago 03:56:33 112
