Patch Tuesday Review – April 2023
Welcome to our summary of the April 2023 Microsoft Patch Tuesday. We have tabulated the vulnerabilities that the latest patches from Microsoft fix, so that you can easily export them for use in your vulnerability management program.
Prism users have already benefited from the platform’s Active Exploit Detection, which automatically alerts you to active exploits affecting issues within your estate.
Microsoft Patch Tuesday April 2023
Microsoft’s April 2023 Patch Tuesday announces fixes for 97 issues, including a fix for a zero day vulnerability.
7 of the 97 vulnerabilities are Critical as they allow remote code execution.
This update contains 20 Elevation of Privilege Vulnerabilities, 8 Security Feature Bypass Vulnerabilities, 45 Remote Code Execution Vulnerabilities, 10 Information Disclosure Vulnerabilities, 9 Denial of Service Vulnerabilities, and 6 Spoofing Vulnerabilities.
One Zero-Day Vulnerability Fixed
The zero-day vulnerability fixed in April’s Patch Tuesday update is:
- CVE-2023-28252 – Windows Common Log File System Driver Elevation of Privilege Vulnerability
An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.
| CVE | Title | Impact | Max Severity |
|---|---|---|---|
| CVE-2023-28314 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Spoofing | Important |
| CVE-2023-28313 | Microsoft Dynamics 365 Customer Voice Cross-Site Scripting Vulnerability | Spoofing | Important |
| CVE-2023-28312 | Azure Machine Learning Information Disclosure Vulnerability | Information Disclosure | Important |
| CVE-2023-28311 | Microsoft Word Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28309 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Spoofing | Important |
| CVE-2023-28308 | Windows DNS Server Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28307 | Windows DNS Server Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28306 | Windows DNS Server Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28305 | Windows DNS Server Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28304 | Microsoft ODBC and OLE DB Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28302 | Microsoft Message Queuing Denial of Service Vulnerability | Denial of Service | Important |
| CVE-2023-28300 | Azure Service Connector Security Feature Bypass Vulnerability | Security Feature Bypass | Important |
| CVE-2023-28299 | Visual Studio Spoofing Vulnerability | Spoofing | Important |
| CVE-2023-28298 | Windows Kernel Denial of Service Vulnerability | Denial of Service | Important |
| CVE-2023-28297 | Windows Remote Procedure Call Service (RPCSS) Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28296 | Visual Studio Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28295 | Microsoft Publisher Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28293 | Windows Kernel Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28292 | Raw Image Extension Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28291 | Raw Image Extension Remote Code Execution Vulnerability | Remote Code Execution | Critical |
| CVE-2023-28288 | Microsoft SharePoint Server Spoofing Vulnerability | Spoofing | Important |
| CVE-2023-28287 | Microsoft Publisher Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28285 | Microsoft Office Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28278 | Windows DNS Server Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28277 | Windows DNS Server Information Disclosure Vulnerability | Information Disclosure | Important |
| CVE-2023-28276 | Windows Group Policy Security Feature Bypass Vulnerability | Security Feature Bypass | Important |
| CVE-2023-28275 | Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28274 | Windows Win32k Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28273 | Windows Clip Service Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28272 | Windows Kernel Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28271 | Windows Kernel Memory Information Disclosure Vulnerability | Information Disclosure | Important |
| CVE-2023-28270 | Windows Lock Screen Security Feature Bypass Vulnerability | Security Feature Bypass | Important |
| CVE-2023-28269 | Windows Boot Manager Security Feature Bypass Vulnerability | Security Feature Bypass | Important |
| CVE-2023-28268 | Netlogon RPC Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28267 | Remote Desktop Protocol Client Information Disclosure Vulnerability | Information Disclosure | Important |
| CVE-2023-28266 | Windows Common Log File System Driver Information Disclosure Vulnerability | Information Disclosure | Important |
| CVE-2023-28263 | Visual Studio Information Disclosure Vulnerability | Information Disclosure | Important |
| CVE-2023-28262 | Visual Studio Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28260 | .NET DLL Hijacking Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28256 | Windows DNS Server Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28255 | Windows DNS Server Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28254 | Windows DNS Server Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28253 | Windows Kernel Information Disclosure Vulnerability | Information Disclosure | Important |
| CVE-2023-28252 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28250 | Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability | Remote Code Execution | Critical |
| CVE-2023-28249 | Windows Boot Manager Security Feature Bypass Vulnerability | Security Feature Bypass | Important |
| CVE-2023-28248 | Windows Kernel Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28247 | Windows Network File System Information Disclosure Vulnerability | Information Disclosure | Important |
| CVE-2023-28246 | Windows Registry Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28244 | Windows Kerberos Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28243 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28241 | Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability | Denial of Service | Important |
| CVE-2023-28240 | Windows Network Load Balancing Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28238 | Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28237 | Windows Kernel Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28236 | Windows Kernel Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28235 | Windows Lock Screen Security Feature Bypass Vulnerability | Security Feature Bypass | Important |
| CVE-2023-28234 | Windows Secure Channel Denial of Service Vulnerability | Denial of Service | Important |
| CVE-2023-28233 | Windows Secure Channel Denial of Service Vulnerability | Denial of Service | Important |
| CVE-2023-28232 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | Remote Code Execution | Critical |
| CVE-2023-28231 | DHCP Server Service Remote Code Execution Vulnerability | Remote Code Execution | Critical |
| CVE-2023-28229 | Windows CNG Key Isolation Service Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28228 | Windows Spoofing Vulnerability | Spoofing | Important |
| CVE-2023-28227 | Windows Bluetooth Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28226 | Windows Enroll Engine Security Feature Bypass Vulnerability | Security Feature Bypass | Important |
| CVE-2023-28225 | Windows NTLM Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28224 | Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28223 | Windows Domain Name Service Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-28222 | Windows Kernel Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28221 | Windows Error Reporting Service Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28220 | Layer 2 Tunneling Protocol Remote Code Execution Vulnerability | Remote Code Execution | Critical |
| CVE-2023-28219 | Layer 2 Tunneling Protocol Remote Code Execution Vulnerability | Remote Code Execution | Critical |
| CVE-2023-28218 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-28217 | Windows Network Address Translation (NAT) Denial of Service Vulnerability | Denial of Service | Important |
| CVE-2023-28216 | Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-24931 | Windows Secure Channel Denial of Service Vulnerability | Denial of Service | Important |
| CVE-2023-24929 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-24928 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-24927 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-24926 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-24925 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-24924 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-24914 | Win32k Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-24912 | Windows Graphics Component Elevation of Privilege Vulnerability | Elevation of Privilege | Important |
| CVE-2023-24893 | Visual Studio Code Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-24887 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-24886 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-24885 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-24884 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-24883 | Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability | Information Disclosure | Important |
| CVE-2023-24860 | Microsoft Defender Denial of Service Vulnerability | Denial of Service | Important |
| CVE-2023-23384 | Microsoft SQL Server Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-23375 | Microsoft ODBC and OLE DB Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-21769 | Microsoft Message Queuing Denial of Service Vulnerability | Denial of Service | Important |
| CVE-2023-21729 | Remote Procedure Call Runtime Information Disclosure Vulnerability | Information Disclosure | Important |
| CVE-2023-21727 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | Remote Code Execution | Important |
| CVE-2023-21554 | Microsoft Message Queuing Remote Code Execution Vulnerability | Remote Code Execution | Critical |
source https://www.rootshellsecurity.net/patch-tuesday-review-april-2023/
- Get link
- X
- Other Apps
Comments
Post a Comment