Security News > 2020 > December > Microsoft Office security updates fix critical SharePoint RCE bugs
Microsoft has addressed critical remote code execution vulnerabilities in multiple SharePoint versions with this month's Office security updates.
Redmond also issued the December 2020 Patch Tuesday security updates, with security updates for 58 vulnerabilities, nine of them rated as Critical.
The highlights of this month's Microsoft Office security updates are without a doubt the two RCE security bugs affecting Microsoft SharePoint.
Security updates published as part of the December 2020 Patch Tuesday address bugs that could allow remote code execution on Windows systems running vulnerable Click to Run and Microsoft Installer-based editions of Microsoft Office products.
Microsoft Office security updates are delivered through the Microsoft Update platform and via the Download Center.
News URL
Related news
- Microsoft Office 2024 now available for Windows and macOS users (source)
- Microsoft SharePoint RCE flaw exploits in the wild – you've had 3 months to patch (source)
- Microsoft SharePoint RCE bug exploited to breach corporate network (source)
- Microsoft overhauls security for publishing Edge extensions (source)
- Critical Zimbra RCE vulnerability under mass exploitation (CVE-2024-45519) (source)
- Critical Zimbra RCE flaw exploited to backdoor servers using emails (source)
- CISA: Network switch RCE flaw impacts critical infrastructure (source)
- Critical Ivanti RCE flaw with public exploit now used in attacks (source)
- Two simple give-me-control security bugs found in Optigo network switches used in critical manufacturing (source)
- Week in review: Critical Zimbra RCE vulnerability exploited, Patch Tuesday forecast (source)