Windows 10: about cve-2023-29351

about cve-2023-29351how to know if Im affected to this vulnerability.i dont know where to check

:)

 

Additional guidance for devices using Secure Boot for CVE-2023-24932

Read more: https://support.microsoft.com/en-us/...3-b3ff139f832d

 

Required KB Package exclusive to CVE-2023-23415 Vulnerability

Hi,

Can someone help with the update Package exclusive to CVE-2023-23415 Vulnerability.

I have a Win10 1607 and required a small package for the CVE-2023-23415 Vulnerability. Right now, the packages available in the catalog are around 1536.2 MB. which includes multiple other fixes.

I need a smaller package only with this CVE-2023-23415 Vulnerability fix.

 

Microsoft June 2023 Security Updates

June 2023 Security Updates

This release consists of the following 73 Microsoft CVEs:

Tag CVE Base Score CVSS Vector Exploitability FAQs? Workarounds? Mitigations?

Azure DevOps CVE-2023-21565

Azure DevOps CVE-2023-21569

.NET and Visual Studio CVE-2023-24895 7.8

Microsoft Dynamics CVE-2023-24896 5.4

.NET and Visual Studio CVE-2023-24897 7.8

.NET and Visual Studio CVE-2023-24936 8.1

Windows CryptoAPI CVE-2023-24937

Windows CryptoAPI CVE-2023-24938 6.5

Microsoft Exchange Server CVE-2023-28310

.NET Framework CVE-2023-29326 7.8

.NET Core CVE-2023-29331 7.5

NuGet Client CVE-2023-29337 7.1

Microsoft Edge (Chromium-based) CVE-2023-29345 6.1

Windows NTFS CVE-2023-29346 7.8

Windows Group Policy CVE-2023-29351 8.1

Remote Desktop Client CVE-2023-29352 6.5 SysInternals CVE-2023-29353 5.5

Windows DHCP Server CVE-2023-29355 5.3

Microsoft Office SharePoint CVE-2023-29357 9.8

Windows GDI CVE-2023-29358 7.8

WNoindows Win32K CVE-2023-29359 7.8

Windows TPM Device Driver CVE-2023-29360 7.8

Windows Cloud Files Mini Filter Driver CVE-2023-29361 7.0

Remote Desktop Client CVE-2023-29362 8.8

Windows PGM CVE-2023-29363 9.8

Windows Authentication Methods CVE-2023-29364 7.0

Microsoft Windows Codecs Library CVE-2023-29365 7.8

Windows Geolocation Service CVE-2023-29366 7.8

Windows OLE CVE-2023-29367 7.8

Windows Filtering CVE-2023-29368 7.0

Windows Remote Procedure Call Runtime CVE-2023-29369 6.5

Microsoft Windows Codecs Library CVE-2023-29370 7.8

Windows Win32K CVE-2023-29371 7.8

Microsoft WDAC OLE DB provider for SQL CVE-2023-29372 8.8

Windows ODBC Driver CVE-2023-29373 8.8

Windows Resilient File System (ReFS) CVE-2023-32008 7.8

Windows Collaborative Translation Framework CVE-2023-32009 8.8

Windows Bus Filter Driver CVE-2023-32010 7.0

Windows iSCSI CVE-2023-32011 7.5

Windows Container Manager Service CVE-2023-32012 6.3

Windows Hyper-V CVE-2023-32013 6.5

Windows PGM CVE-2023-32014 9.8

Windows PGM CVE-2023-32015 9.8

Windows Installer CVE-2023-32016 5.5

Microsoft Printer Drivers CVE-2023-32017 7.8

Windows Hello CVE-2023-32018 7.8

Windows Kernel CVE-2023-32019 4.7

Role: DNS Server CVE-2023-32020 3.7

Windows SMB CVE-2023-32021 7.1

Windows Server Service CVE-2023-32022 7.6

Microsoft Power Apps CVE-2023-32024 3.0

Microsoft Office Excel CVE-2023-32029 7.8

.NET and Visual Studio CVE-2023-32030 7.5

Microsoft Exchange Server CVE-2023-32031 8.8

.NET and Visual Studio CVE-2023-32032 6.5

.NET and Visual Studio CVE-2023-33126 7.3

.NET and Visual Studio CVE-2023-33127 8.1

.NET and Visual Studio CVE-2023-33128 7.3

Microsoft Office SharePoint CVE-2023-33129 6.5

Microsoft Office SharePoint CVE-2023-33130 7.3

Microsoft Office Outlook CVE-2023-33131 8.8

Microsoft Office SharePoint CVE-2023-33132 6.3

Microsoft Office Excel CVE-2023-33133 7.8

.NET and Visual Studio CVE-2023-33135 7.3

Microsoft Office Excel CVE-2023-33137 7.8

Visual Studio CVE-2023-33139 5.5 CVSS:3.1

Microsoft Office OneNote CVE-2023-33140 6.5

ASP .NET CVE-2023-33141 7.5 /RL:O/RC:C

Microsoft Office SharePoint CVE-2023-33142 6.5

Microsoft Edge (Chromium-based) CVE-2023-33143 7.5

Visual Studio Code CVE-2023-33144 5.0

Microsoft Edge (Chromium-based) CVE-2023-33145 6.5

Microsoft Office CVE-2023-33146 7.8

We are republising 22 non-Microsoft CVEs:

CNA Tag CVE FAQs? Workarounds? Mitigations?

Chrome Microsoft Edge (Chromium-based) CVE-2023-2929 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2930 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2931 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2932 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2933 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2934 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2935 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2936 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2937 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2938 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2939 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2940 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-2941 Yes No No

Chrome Microsoft Edge (Chromium-based) CVE-2023-3079 Yes No No

Github Visual Studio CVE-2023-25815 Yes No No

Github Visual Studio CVE-2023-25652 Yes No No

AutoDesk Visual Studio CVE-2023-27909 Yes No No

AutoDesk Visual Studio CVE-2023-27910 Yes No No

AutoDesk Visual Studio CVE-2023-27911 Yes No No

Github Visual Studio CVE-2023-29007 Yes No No

Github Visual Studio CVE-2023-29011 Yes No No

Github Visual Studio CVE-2023-29012 Yes No No

Security Update Guide Blog Posts

Date Blog Post

January 11, 2022 Coming Soon: New Security Update Guide Notification System

February 9, 2021 Continuing to Listen: Good News about the Security Update Guide API

January 13, 2021 Security Update Guide Supports CVEs Assigned by Industry Partners

December 8, 2020 Security Update Guide: Let’s keep the conversation going

November 9, 2020 Vulnerability Descriptions in the New Version of the Security Update Guide

Relevant Resources

• The new Hotpatching feature is now generally available. Please see Hotpatching feature for Windows Server Azure Edition virtual machines (VMs) for more information.
  
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
  
• Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
  
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
  
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
  
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.
  

Known Issues

You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.

For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).

KB Article Applies To

5027215 Windows 10, version 21H2 and Windows 10, version 22H2

5027222 Windows 10, version 1809, Windows Server 2019

5027223 Windows 11, version 21H2

5027225 Windows Server 2022

5027231 Windows 11, version 22H2

5027256 Windows Server 2008 R2 (Security-only update)

5027275 Windows Server 2008 R2 (Monthly Rollup)

5027277 Windows Server 2008 (Security-only update)

5027279 Windows Server 2008 (Monthly Rollup)

Released: Jun 13, 2023

June 2023 Security Updates - Release Notes - Security Update Guide - Microsoft