Security News > 2020 > December > Microsoft Office security updates fix critical SharePoint RCE bugs
Microsoft has addressed critical remote code execution vulnerabilities in multiple SharePoint versions with this month's Office security updates.
Redmond also issued the December 2020 Patch Tuesday security updates, with security updates for 58 vulnerabilities, nine of them rated as Critical.
The highlights of this month's Microsoft Office security updates are without a doubt the two RCE security bugs affecting Microsoft SharePoint.
Security updates published as part of the December 2020 Patch Tuesday address bugs that could allow remote code execution on Windows systems running vulnerable Click to Run and Microsoft Installer-based editions of Microsoft Office products.
Microsoft Office security updates are delivered through the Microsoft Update platform and via the Download Center.
News URL
Related news
- CISA tags Microsoft SharePoint RCE bug as actively exploited (source)
- Microsoft April 2024 Patch Tuesday fixes 150 security flaws, 67 RCEs (source)
- Microsoft Office LTSC 2024 preview available for Windows, Mac (source)
- Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw (source)
- Microsoft confirms memory leak in March Windows Server security update (source)
- CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability (source)
- Patch actively exploited Microsoft SharePoint bug, CISA orders federal agencies (CVE-2023-24955) (source)
- Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online (source)
- Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online (source)
- Critical Security Flaw Found in Popular LayerSlider WordPress Plugin (source)