Microsoft Patches 92 Security Vulnerabilities in March 2022 Update
Microsoft has addressed 92 security vulnerabilities in its March 2022 Patch Tuesday update, with three classified as critical. These fixes cover a wide range of products, including Windows, Azure, and Microsoft 365 Apps. Notably, no active exploitations of these vulnerabilities have been reported as of March 2022.
Among the patched issues, three are publicly disclosed zero-days. The most severe is CVE-2022-24508, a Windows SMBv3 Client/Server Remote Code Execution (RCE) vulnerability with a CVSSv3.1 score of 8.8/10. Another critical vulnerability is CVE-2022-23277, affecting Microsoft Exchange Server and also rated 8.8/10 for severity.
Also addressed are two Remote Desktop Client RCE vulnerabilities, CVE-2022-21990 and CVE-2022-23285, both scoring 8.8/10. Additionally, an Azure Site Recovery Elevation of Privilege vulnerability, CVE-2022-24469, was fixed with a CVSSv3.1 score of 8.1/10.
Adobe has also released updates, fixing six CVEs in AfterEffects, Illustrator, and Photoshop, with five considered critical.
In total, Microsoft has patched 92 vulnerabilities, including Denial of Service, Elevation of Privilege, Information Disclosure, Remote Code Execution, Security Feature Bypass, and Spoofing. While no active exploitations have been reported, users are advised to apply these updates promptly to ensure system security.
Read also:
- Mural at blast site in CDMX commemorates Alicia Matías, sacrificing life for granddaughter's safety
- Comcast Introduces Sports-Oriented Video Bundle in Preparation for the World Cup Tournament
- Is Maruti's reign over the SUV market being challenged by Mahindra's aggressive move to snatch the top spot?
- Social Security Administration Abandons Plan for Electronic Payments: Important Information for Recipients of Benefits
