Microsoft has published a security advisory to address vulnerabilities affecting the following products on the 14th of February 2023. It is recommended that you take the necessary precautions to ensure your products are always protected.
.NET and Visual Studio
.NET Framework
3D Builder
Azure App Service
Azure Data Box Gateway
Azure DevOps
Azure Machine Learning
HoloLens
Internet Storage Name Service
Microsoft Defender for Endpoint
Microsoft Defender for IoT
Microsoft Dynamics
Microsoft Edge (Chromium-based)
Microsoft Exchange Server
Microsoft Graphics Component
Microsoft Office
Microsoft Office OneNote
Microsoft Office Publisher
Microsoft Office SharePoint
Microsoft Office Word
Microsoft PostScript Printer Driver
Microsoft WDAC OLE DB provider for SQL
Microsoft Windows Codecs Library
Power BI
SQL Server
Visual Studio
Windows Active Directory
Windows ALPC
Windows Common Log File System Driver
Windows Cryptographic Services
Windows Distributed File System (DFS)
Windows Fax and Scan Service
Windows HTTP.sys
Windows Installer
Windows iSCSI
Windows Kerberos
Windows MSHTML Platform
Windows ODBC Driver
Windows Protected EAP (PEAP)
Windows SChannel
Windows Win32K
For more information on these updates, you can follow this URL:
https://msrc.microsoft.com/update-guide/releaseNote/2023-Feb
The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.
PDF Download: Microsoft Security Advisory.pdf
References
Microsoft Security Updates. (2023, February 14) Reviewed from Microsoft.
https://msrc.microsoft.com/update-guide/deployments
Microsoft Security Updates. (2023, February 14) US CERT.
https://www.cisa.gov/uscert/ncas/current-activity/2023/02/14/microsoft-releases-february-2023-security-updates