Today is October’s Patch Tuesday, which brings in a fix for a active exploit as well as fixes for other issues. Notably, the recent Exchange zero-days were not given patches this time. BleepingComputer has more details on the CVE’s and what’s being patched.
-
39 Elevation of Privilege Vulnerabilities
-
2 Security Feature Bypass Vulnerabilities
-
20 Remote Code Execution Vulnerabilities
-
11 Information Disclosure Vulnerabilities
-
8 Denial of Service Vulnerabilities
-
4 Spoofing Vulnerabilities