Numerous vulnerabilities detected in Microsoft Products
A recent security advisory released by India’s Computer Emergency Response Team (CERT-In) has sparked concerns due to the discovery of multiple vulnerabilities in various popular Microsoft products. The advisory, named CIAD-2023-0028 presents the severity of these vulnerabilities as high, showing potential risks to users.
Impacted software includes Windows operating systems, Exchange Server, Teams, Office, Azure, and Developer Tools with potential impacts like Denial of Service, Remote Code Execution, Spoofing, Elevation of Privilege, Security Feature Bypass, and Information Disclosure.
These commonly used Microsoft products can be affected by weaknesses that allow various harmful actions. These actions include getting more power without permission, stealing important information secretly, attacking from remote locations, bypassing security, pretending to be someone else, and even making services stop working so others can’t use them.
The advisory from CERT-In shows how important it is to quickly fix these weaknesses. It also advises users that they should quickly install updates that make OS and apps more secure. Make sure to update Microsoft products first and be careful with suspicious messages and files from people you don’t know. It is also very important to use strong passwords with MFA authentication where possible.