MICROSOFT MARCH 2022 PATCH TUESDAY 71 VULNERABILITIES FIXED

Microsoft released 71 security fixes for its software. Microsoft has released security fixes for 71 software, which includes 41 patches to fix Microsoft Windows vulnerabilities, five weaknesses within Microsoft Office along with two for Microsoft Exchange.

Three vulnerabilities have been classified as critical — CVE-2022-222006 (CVE-2022-2022-22006), CVE-2022-24501, and CThe rest are classified as crucial.

The Redmond giant’s most recent patch typically scheduled for release every second Tuesday every month, referred to as Patch Tuesday, Microsoft has resolved issues that included remote code execution (RCE) weaknesses as well as security bugs that prevent service privilege escalation issues and spoofing issues. They also fixed information leaks and exploits to bypass policies.

MICROSOFT MARCH 2022 PATCH TUESDAY 71 VULNERABILITIES FIXED

The vulnerabilities are actively exploited, however, Sophos has announced that a proof-of concept publically accessible was released for CVE-2022-21990.

The March security update affected products that include Exchange, Visual Studio, the Xbox application that runs on Windows, Intune, Microsoft Defender, Express Logic, Azure Site Recovery, and the Chromium-based Microsoft Edge browser with 21 vulnerabilities.

Other issues of concern in this update include:

  • CVE-2022-24502: Internet Explorer Security Feature Bypass Vulnerability
  • CVE-2022-24508: SMB Server Remote Code Execution Vulnerability
  • CVE-2022-24512: .NET and Visual Studio Remote Code Execution Vulnerability
  • CVE-2022-21990: Remote Desktop Client Remote Code Execution Vulnerability
  • CVE-2022-23277: Microsoft Exchange Server Remote Code Execution Vulnerability
  • CVE-2022-24459: Windows Fax and Scan Service Elevation of Privilege Vulnerability

Microsoft also has announced an updated plan for Windows 11 on Tuesday.

Sharing Is Caring:

Leave a Comment