- Home
- Alerts & Advisories
- Alerts
- October 2022 Monthly Patch
Monthly Patch
October 2022 Monthly Patch
12 October 2022
Microsoft has released security patches to address multiple vulnerabilities in their software and products.
The vulnerabilities that have been classified as Critical in severity are listed in the table below.
For the full list of security patches released by Microsoft, please refer to
https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2022-Oct
Critical vulnerabilities
CVE Number | CVE Name | Base Score | Reference |
|---|---|---|---|
CVE-2022-37968 | Azure Arc-enabled Kubernetes cluster Connect Elevation of Privilege Vulnerability | 10.0 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37968 |
CVE-2022-41038 | Microsoft SharePoint Server Remote Code Execution Vulnerability | 8.8 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41038 |
CVE-2022-37976 | Active Directory Certificate Services Elevation of Privilege Vulnerability | 8.8 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37976 |
CVE-2022-41081 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | 8.1 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41081 |
CVE-2022-38047 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | 8.1 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38047 |
CVE-2022-38000 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | 8.1 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38000 |
CVE-2022-33634 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | 8.1 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-33634 |
CVE-2022-30198 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | 8.1 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30198 |
CVE-2022-24504 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | 8.1 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-24504 |
CVE-2022-22035 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | 8.1 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-22035 |
CVE-2022-37979 | Windows Hyper-V Elevation of Privilege Vulnerability | 7.8 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37979 |
CVE-2022-38048 | Microsoft Office Remote Code Execution Vulnerability | 7.8 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38048 |
CVE-2022-34689 | Windows CryptoAPI Spoofing Vulnerability | 7.5 | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34689 |