Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

Microsoft’s November Security Update

November 16, 2023
Reading Time: 3 mins read
in Alerts
Microsoft’s November Security Update

Microsoft has urgently released a comprehensive set of patches addressing 63 security vulnerabilities in its software for November 2023, with three vulnerabilities actively exploited in the wild. Among the 63 flaws, three are rated Critical, 56 are rated Important, and four are rated Moderate in severity. Of particular concern are five zero-day vulnerabilities, including CVE-2023-36025, which allows attackers to bypass Windows Defender SmartScreen checks, and CVE-2023-36033 and CVE-2023-36036, which could be exploited to gain SYSTEM privileges.

These exploits prompted the U.S. Cybersecurity and Infrastructure Security Agency (CISA) to add three issues to its Known Exploited Vulnerabilities catalog, urging federal agencies to apply fixes by December 5, 2023.

Additionally, microsoft has also patched two critical remote code execution flaws in Protected Extensible Authentication Protocol and Pragmatic General Multicast, along with addressing CVE-2023-38545, a critical heap-based buffer overflow flaw in the curl library, and an information disclosure vulnerability in Azure CLI (CVE-2023-36052).

The latter could allow attackers to recover plaintext passwords and usernames from log files, potentially escalating their privileges for follow-on attacks. Microsoft responded by making changes to Azure CLI commands to enhance security against inadvertent usage leading to secrets exposure.

Furthermore, the November update is part of a broader effort, with multiple vendors, including Adobe, AMD, Google Chrome, Intel, SAP, and others, releasing security updates to rectify vulnerabilities in their software. This collective response highlights the collaborative efforts within the cybersecurity community to address vulnerabilities and enhance digital resilience across diverse technology ecosystems.

Reference:

  • This release consists of the following 63 Microsoft CVEs:
Tags: AttackersCISACyber AlertCyber Alerts 2023CybersecurityMicrosoftNovember 2023Vulnerabilities
ADVERTISEMENT

Related Posts

GenAI Used by Hackers for Phishing

GenAI Used by Hackers for Phishing

August 21, 2025
GenAI Used by Hackers for Phishing

QuirkyLoader Spreads RATs, Keyloggers

August 21, 2025
GenAI Used by Hackers for Phishing

Malicious Chrome VPN Steals Data

August 21, 2025
Mozilla Security Advisory AV25-529

RingReaper Malware Hits Linux Servers

August 20, 2025
Mozilla Security Advisory AV25-529

Mozilla Security Advisory AV25-529

August 20, 2025
Mozilla Security Advisory AV25-529

Microsoft Issues Windows Fix Update

August 20, 2025

Latest Alerts

QuirkyLoader Spreads RATs, Keyloggers

GenAI Used by Hackers for Phishing

Malicious Chrome VPN Steals Data

RingReaper Malware Hits Linux Servers

Mozilla Security Advisory AV25-529

Microsoft Issues Windows Fix Update

Subscribe to our newsletter

    Latest Incidents

    Comet AI Browser Duped by Fake Shops

    China Briefly Cuts Off Global Internet

    Orange Belgium Data Breach Hits 850K

    NY Business Council Data Breach Hits 47K

    Ransomware Gang Hacks Inotiv Firm

    Intel Employee Data Exposure Flaw

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial