For HomeFor BusinessFor Partners
Industry News
1 min read

Microsoft’s July 2022 Security Patch Rollout Includes Fix for Zero-Day Flaw

Vlad CONSTANTINESCU

July 13, 2022

Promo Protect all your devices, without slowing them down.
Free 30-day trial
Microsoft’s July 2022 Security Patch Rollout Includes Fix for Zero-Day Flaw

Microsoft’s monthly Patch Tuesday updates in July address 84 new security vulnerabilities for several product categories, including a zero-day flaw exploited in the wild.

Four of the vulnerabilities addressed by the rollout are flagged as Critical, while the remaining ones are only marked as Important.

One of the most critical flaws patched by Microsoft’s July Patch Tuesday is a Windows Client Server Runtime Subsystem (CRSS) Elevation of Privilege Vulnerability.

The flaw, tracked as CVE-2022-22047 and with a CVSS score of 7.8, can be exploited to gain SYSTEM permissions. It was reported by Microsoft’s Threat Intelligence Center (MSTIC) and Security Response Center (MSRC).

Successfully exploiting the vulnerability could give perpetrators a considerable range of malicious capabilities on compromised machines. Microsoft’s security advisory only includes basic specifics of the flaw but warns that attacks exploiting the flaw have been detected in the wild.

Aside from the above-mentioned shortcomings, the company also patched an additional couple of Chromium-centric Edge browser flaws. One of the vulnerabilities is a high-severity heap buffer overflow zero-day, tracked as CVE-2022-2294, that affects the browser’s WebRTC functionality.

As part of the same rollout, Microsoft addressed 32 Azure Site Recovery issues, two of which enabled remote code execution, while the remaining ones were related to privilege escalation.

Last but not least, July’s Patch Tuesday plugged two Windows Server Service (CVE-2022-30216) and Microsoft Defender for Endpoint (CVE-2022-33637) tampering vulnerabilities, as well as three denial-of-service (DoS) flaws.

To steer clear of attacks that leverage these vulnerabilities, users are advised to apply Microsoft’s security patches as soon as they become available. Updating to its latest security standards can be done using Windows’ Check for updates feature or downloading and applying the updates manually (for advanced users).

tags

Industry News

Author

Vlad CONSTANTINESCU

Vlad CONSTANTINESCU

Vlad's love for technology and writing created rich soil for his interest in cybersecurity to sprout into a full-on passion. Before becoming a Security Analyst, he covered tech and security topics.

View all posts

Right now Top posts

Netizens Fear Scammers Will Steal Their Savings but Do Little to Defend Themselves, Bitdefender Survey Shows
Industry News Scam

Netizens Fear Scammers Will Steal Their Savings but Do Little to Defend Themselves, Bitdefender Survey Shows

July 01, 2024

7 min read
Uncovering IoT Vulnerabilities: Highlights from the Bitdefender - Netgear 2024 Threat Report
Smart Home

Uncovering IoT Vulnerabilities: Highlights from the Bitdefender - Netgear 2024 Threat Report

June 26, 2024

2 min read
UEFA EURO 2024 Scams Are Already Here – How to Stay Safe
Scam Tips and Tricks

UEFA EURO 2024 Scams Are Already Here – How to Stay Safe

June 25, 2024

5 min read
Most People Still Write Important Passwords Down, Bitdefender Report Finds
Digital Privacy Threats

Most People Still Write Important Passwords Down, Bitdefender Report Finds

June 07, 2024

2 min read

FOLLOW US ON SOCIAL MEDIA

You might also like

Europol Cracks Down on 'Pirates' Abusing Cobalt Strike
Industry News

Europol Cracks Down on 'Pirates' Abusing Cobalt Strike
Filip TRUȚĂ

July 05, 2024

1 min read
Meta Ordered to Stop Data Collection for AI Training in Brazil
Industry News

Meta Ordered to Stop Data Collection for AI Training in Brazil
Silviu STAHIE

July 05, 2024

1 min read
Hacker breaches Ethereum mailing list to conduct phishing attack against crypto users
Industry News Threats

Hacker breaches Ethereum mailing list to conduct phishing attack against crypto users
Alina BÎZGĂ

July 05, 2024

3 min read

Bookmarks

loader