Security News > 2023 > December > December 2023 Patch Tuesday forecast: ‘Tis the season for vigilance
The good news for the rest of you is that December Patch Tuesday is usually light regarding CVEs reported.
Exploitable across the internet, the vulnerability is ideal for a phishing exploit as it only requires the user to click on a malicious URL. A fix was included in the November Patch Tuesday updates and the CVE was reported as Known Exploited, but now it is Publicly Disclosed as well.
December 2023 Patch Tuesday forecast Microsoft introduced a series of Service Stack Updates last month and there may be more to come.
The Extended Security Updates for Server 2012 were rolled out without issue last month and will show up again next week, so if you are running unprotected on these older systems consider them an important risk-reducing Christmas purchase.
Mozilla has shifted away from Patch Tuesday releases the last three months.
The holiday season can be hectic, but it looks like we may have a standard, easy Patch Tuesday week.
News URL
https://www.helpnetsecurity.com/2023/12/08/december-2023-patch-tuesday-forecast/
Related news
- October 2024 Patch Tuesday forecast: Recall can be recalled (source)
- Week in review: Critical Zimbra RCE vulnerability exploited, Patch Tuesday forecast (source)
- Microsoft October 2024 Patch Tuesday fixes 5 zero-days, 118 flaws (source)
- Microsoft cleans up hot mess of Patch Tuesday preview (source)
- Patch Tuesday: Internet Explorer Vulnerabilities Still Pose a Problem (source)
- November 2024 Patch Tuesday forecast: New servers arrive early (source)
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 91 flaws (source)
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 89 flaws (source)
- Microsoft slips Task Manager and processor count fixes into Patch Tuesday (source)
- Patch Tuesday: Four Critical Vulnerabilities Paved Over (source)