To: All Users

As informed by the Cybersecurity Incident Alert and Response Centre (CARIC), Microsoft Corporation have recently released the security update for February that includes 77 vulnerability updates, which 9 of them are serious. Therefore, it is recommended to update the affected products as soon as possible. The released update mainly covers the following components: Windows and Windows components, Office and Office components, 3D Builder, Windows iSCSI, Microsoft Exchange Server, SQL Server, .NET and Visual Studio, Azure, Windows Defender and other products.

 

Special Attention for the following Vulnerabilities:

• Windows Graphics Components Remote Code Execution Vulnerabilities (CVE-2023-21823)

Attackers who successfully exploited this vulnerability could get the system privileges. Microsoft Corporation has detected that this vulnerability has been exploited.

For more details: https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21823

• Microsoft Publisher Security Feature Bypass Vulnerabilities (CVE-2023-21715)

Attackers tricked targeted users to download and execute a special file, and successfully exploit it to bypass Office macro policies that block untrusted or malicious files. Microsoft Corporation has detected that this vulnerability has been exploited.

For more details: https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21715

• Windows Common Log File System Driver Privilege Escalation Vulnerability (CVE-2023-23376)

Attackers who successfully exploited this vulnerability could get the system privileges. Microsoft Corporation has detected that this vulnerability has been exploited.

For more details: https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-23376

• Microsoft Exchange Server Remote Code Execution Vulnerabilities (CVE-2023-21529, CVE-2023-21706, CVE-2023-21707)

This vulnerability could allow remote attackers to execute arbitrary code on a vulnerable server through network calls.

For more details:

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21529

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21706

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21707

• Microsoft Protected Extensible Authentication Protocol Remote Code Execution Vulnerabilities (CVE-2023-21689, CVE-2023-21690, CVE-2023-21692)

The vulnerability exists in the Protected Extensible Authentication Protocol (PEAP) server component, which is used to establish secure connections with wireless clients. Successful exploitation of the vulnerability could allow remote and unauthenticated attackers to execute arbitrary code. The target must be running Network Policy Server and configured with a network policy that allows PEAP to be vulnerable.

For more details:

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21689

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21690

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21692

 

Microsoft February Security Updates

For more details: https://msrc.microsoft.com/update-guide/releaseNote/2023-Feb

 

Mitigation
If the above-mentioned affected products are being used, please install the secure updates released by Microsoft Corporation as soon as possible.

Reference

• How to download and install software in a secure manner?
• Basic Knowledge of Online Safety and Security
• Other Information Security Tips

Should you have any enquiries, please feel free to contact ICTO Help Desk.

ICTO Help Desk
Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
Telephone : 8822 8600
email : icto.helpdesk@um.edu.mo

Information and Communication Technology Office