Security News > 2022 > December > Microsoft December 2022 Patch Tuesday fixes 2 zero-days, 49 flaws
Today is Microsoft's December 2022 Patch Tuesday, and with it comes fixes for two zero-day vulnerabilities, including an actively exploited bug, and a total of 49 flaws.
Six of the 49 vulnerabilities fixed in today's update are classified as 'Critical' as they allow remote code execution, one of the most severe types of vulnerabilities.
The above counts do not include twenty-five Microsoft Edge vulnerabilities previously fixed on December 5th. For information about the non-security Windows updates, you can read today's articles on the Windows 10 KB5021233 and KB5021237 updates and the Windows 11 KB5021255 and KB5021234 updates.
This month's Patch Tuesday fixes two zero-day vulnerabilities, one actively exploited and the other publicly disclosed.
Below is the complete list of resolved vulnerabilities and released advisories in the December 2022 Patch Tuesday updates.
Microsoft October 2022 Patch Tuesday fixes zero-day used in attacks, 84 flaws.
News URL
Related news
- Microsoft October 2024 Patch Tuesday fixes 5 zero-days, 118 flaws (source)
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 91 flaws (source)
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 89 flaws (source)
- Microsoft cleans up hot mess of Patch Tuesday preview (source)
- Microsoft slips Task Manager and processor count fixes into Patch Tuesday (source)
- October 2024 Patch Tuesday forecast: Recall can be recalled (source)
- Week in review: Critical Zimbra RCE vulnerability exploited, Patch Tuesday forecast (source)
- Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572) (source)
- Patch Tuesday: Internet Explorer Vulnerabilities Still Pose a Problem (source)
- Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools (source)