Security News > 2023 > January > Microsoft plugs actively exploited zero-day hole (CVE-2023-21674)
To mark the January 2023 Patch Tuesday, Microsoft has released patches for 98 CVE-numbered vulnerabilities, including one exploited in the wild and one that's been publicly disclosed.
The one publicly disclosed vulnerability - CVE-2023-21549, in Windows SMB Witness - is apparently less likely to be exploited in the latest Windows and Windows Server versions, even though attack complexity and privileges required are low, and no user interaction is needed.
"To exploit this vulnerability, an attacker could execute a specially crafted malicious script which executes an RPC call to an RPC host. This could result in elevation of privilege on the server. An attacker who successfully exploited this vulnerability could execute RPC functions that are restricted to privileged accounts only," Microsoft explained.
While CVE-2023-21549 might be a patching priority for some, CVE-2023-21743 - a security feature bypass vulnerability in Microsoft SharePoint Server - should be quickly remediated by many.
Admins in charge of patching on-premises Microsoft Exchange Servers should move quickly to patch two EoP vulnerabilities stemming from a failed patch released in November 2022.
Microsoft has offered several options for those looking to switch from Windows 7, depending on machines' hardware.
News URL
https://www.helpnetsecurity.com/2023/01/10/patch-tuesday-cve-2023-21674/
Related news
- Microsoft October 2024 Patch Tuesday fixes 5 zero-days, 118 flaws (source)
- Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572) (source)
- Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools (source)
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 91 flaws (source)
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 89 flaws (source)
- Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039) (source)
- Microsoft patches Windows zero-day exploited in attacks on Ukraine (source)
- Microsoft launches Zero Day Quest hacking event with $4 million in rewards (source)
- Microsoft announces Zero Day Quest hacking event with big rewards (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-10 | CVE-2023-21743 | Unspecified vulnerability in Microsoft Sharepoint Server 2016/2019 Microsoft SharePoint Server Security Feature Bypass Vulnerability | 5.3 |
| 2023-01-10 | CVE-2023-21549 | Improper Privilege Management vulnerability in Microsoft products Windows SMB Witness Service Elevation of Privilege Vulnerability | 8.8 |