Microsoft’s Response to Open-Source Vulnerabilities - CVE-2023-4863 and CVE-2023-5217

AWS

AWS

Owner
FPCH Owner
Joined
Nov 19, 2003
Messages
10,976
Location
Florida U.S.A.
OS X
Chrome 125.0.0.0
Microsoft is aware and has released patches associated with the two Open-Source Software security vulnerabilities, CVE-2023-4863 and CVE-2023-5217. Through our investigation, we found that these affect a subset of our products and as of today, we have addressed them in our products as outlined below:

CVE-2023-4863
  • Microsoft Edge
  • Microsoft Teams for Desktop
  • Skype for Desktop
  • Webp Image Extensions (Released on Windows and updates through Microsoft Store)
CVE-2023-5217
  • Microsoft Edge
Additional updates will be documented in the MSRC Security Update Guide CVE-2023-4863 and CVE-2023-5217 accordingly. You can register for the security notifications mailer to be alerted when updates are available, and when content changes are made to the CVEs. See Microsoft Technical Security Notifications and Coming Soon: New Security Update Guide Notification System.

References

Continue reading...
 
Last edited:

Similar threads

P
Secure Windows Server 2012/R2 workloads with options from Azure
Replies
0
Views
22
Patrick Widjaja
P
AWS
New Security Advisory Tab Added to the Microsoft Security Update Guide
Replies
0
Views
19
AWS
AWS
I
Gain enhanced security and performance with Windows Server 2025—now in preview
Replies
0
Views
57
Ian LeGrow
I
AWS
How to proactively defend against Mozi IoT botnet
Replies
1
Views
323
Tony D
Tony D
AWS
Internet Explorer 11 desktop app retirement FAQ
Replies
1
Views
675
Tony D
Tony D
Back
Top