Security
Headlines
HeadlinesLatestCVEs

Headline

ADV230003: Microsoft Office Defense in Depth Update

Is this advisory related to the vulnerability that is documented by CVE-2023-36884 that was issued in July 2023?

Yes, this defense in depth update is not a vulnerability, but installing this update stops the attack chain leading to the Windows Search security feature bypass vulnerability (CVE-2023-36884). Microsoft recommends installing the Office updates discussed in this advisory as well as installing the Windows updates from August 2023.

Microsoft Security Response Center
#vulnerability#windows#microsoft#Microsoft Office#Security Advisory

Microsoft Security Response Center: Latest News

CVE-2024-49060: Azure Stack HCI Elevation of Privilege Vulnerability