Microsoft Monthly Security Update (November 2022)

Release Date: 9 Nov 2022 6402 Views

RISK: Medium Risk

TYPE: Operating Systems - Windows OS

Microsoft has released monthly security update for their products:

Vulnerable Product	Risk Level	Impacts	Notes
Windows	Medium Risk	Information Disclosure Elevation of Privilege Denial of Service Remote Code Execution Security Restriction Bypass	CVE-2022-41091 is being exploited in the wild. Note: The attacker would have to convince a user to take action to exploit the vulnerability CVE-2022-41091, the risk level is rated as Medium Risk.
Extended Security Updates (ESU)	Medium Risk	Information Disclosure Elevation of Privilege Denial of Service Remote Code Execution
Open Source Software	Medium Risk	Elevation of Privilege
Azure	Medium Risk	Elevation of Privilege Remote Code Execution
Developer Tools	Medium Risk	Information Disclosure Elevation of Privilege Remote Code Execution
Microsoft Office	Medium Risk	Spoofing Information Disclosure Remote Code Execution Security Restriction Bypass
Exchange Server	Medium Risk	Spoofing Elevation of Privilege
Microsoft Dynamics	Medium Risk	Information Disclosure

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 0

Number of 'Medium Risk' product(s): 8

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': Medium Risk

Impact

Before installation of the software, please visit the vendor web-site for more details.