Your review has been sent successfully

Microsoft Alert

3638
Classification
These posts contain security alerts, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Most Viewed Warnings

Dell EMC Alert

● Critical

F5 Alert

● High

IBM Alert

● Critical

Fortinet Alert

● High

Red Hat Alert

● High

حملات تصيدية تستهدف مايكروسوفت تيمز (Microsoft Teams)

● High

Warning Date

Severity Level

Warning Number

Target Sector

11 January, 2023

● Critical

2023-5418

All

Description:

Microsoft has released security updates to address several vulnerabilities in the following products:

  • Windows Server 2022
  • Windows Server 2019
  • Windows Server 2016
  • Windows Server 2012
  • Windows 11
  • Windows 10
  • Windows 8
  • Windows 7
  • Microsoft SharePoint Enterprise Server 2016
  • Microsoft SharePoint Enterprise Server 2013
  • Microsoft SharePoint Sever 2019
  • Microsoft SharePoint Server Subscription Edition
  • Microsoft Exchange Server 2016 CU 23
  • Microsoft Exchange Server 2019 CU 11
  • Microsoft Exchange Server 2019 CU 12
  • Microsoft Exchange Server 2013 CU 23
  • Microsoft 365 Apps 32/64-bit
  • Microsoft Office 2019 for Mac
Threats:

An attacker could exploit these vulnerabilities by doing the following:

  • Gain SYSTEM privileges
  • Security feature bypass
  • Perform spoofing attack and obtain NTLM hashes of other Exchange users
  • Remote Code Execution
Best practice and Recommendations:

The CERT team encourages users to review Microsoft security advisory and apply the necessary updates:

How to update Windows:

  • https://support.microsoft.com/en-us/windows/get-the-latest-windows-update-7d20e88c-0568-483a-37bc-c3885390d212
Last updated at 11 January, 2023

Rate the content

rate-icon
up icon