Security News > 2023 > June > Microsoft Releases Updates to Patch Critical Flaws in Windows and Other Software

Microsoft has rolled out fixes for its Windows operating system and other software components to remediate major security shortcomings as part of Patch Tuesday updates for June 2023.

It's worth noting that Microsoft also closed out 26 other flaws in Edge - all of them rooted in Chromium itself - since the release of May Patch Tuesday updates.

The June 2023 updates also mark the first time in several months that doesn't feature any zero-day flaw in Microsoft products that's publicly known or under active attack at the time of release.

"An attacker who has gained access to spoofed JWT authentication tokens can use them to execute a network attack which bypasses authentication and allows them to gain access to the privileges of an authenticated user," Microsoft said.

Also patched by Redmond are three critical remote code execution bugs in Windows Pragmatic General Multicast that could be weaponized to "Achieve remote code execution and attempt to trigger malicious code."

Microsoft previously addressed a similar flaw in the same component, a protocol designed to deliver packets between multiple network members in a reliable manner, in April 2023.

News URL

https://thehackernews.com/2023/06/microsoft-releases-updates-to-patch.html