Security News > 2023 > December > December 2023 Patch Tuesday forecast: ‘Tis the season for vigilance
The good news for the rest of you is that December Patch Tuesday is usually light regarding CVEs reported.
Exploitable across the internet, the vulnerability is ideal for a phishing exploit as it only requires the user to click on a malicious URL. A fix was included in the November Patch Tuesday updates and the CVE was reported as Known Exploited, but now it is Publicly Disclosed as well.
December 2023 Patch Tuesday forecast Microsoft introduced a series of Service Stack Updates last month and there may be more to come.
The Extended Security Updates for Server 2012 were rolled out without issue last month and will show up again next week, so if you are running unprotected on these older systems consider them an important risk-reducing Christmas purchase.
Mozilla has shifted away from Patch Tuesday releases the last three months.
The holiday season can be hectic, but it looks like we may have a standard, easy Patch Tuesday week.
News URL
https://www.helpnetsecurity.com/2023/12/08/december-2023-patch-tuesday-forecast/
Related news
- December 2024 Patch Tuesday forecast: The secure future initiative impact (source)
- Week in review: Veeam Service Provider Console flaws fixed, Patch Tuesday forecast (source)
- Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws (source)
- Microsoft holds last Patch Tuesday of the year with 72 gifts for admins (source)
- Patch Tuesday: Microsoft Patches One Actively Exploited Vulnerability, Among Others (source)
- What Is Patch Tuesday? Microsoft’s Monthly Update Explained (source)
- January 2025 Patch Tuesday forecast: Changes coming in cybersecurity guidance (source)
- Week in review: Exploited Ivanti Connect Secure zero-day, Patch Tuesday forecast (source)