TRY NOW
Patch Tuesday

Microsoft Patch Tuesday – October 2023

7 min. read
10/10/2023
By Esben Dochy
Microsoft-Patch-Tuesday-May-2022

Patch Tuesday is once again upon us. As always, our team has put together the monthly Patch Tuesday Report to help you manage your update progress. The audit report gives you a quick and clear overview of your Windows machines and their patching status. The October 2023 edition of Patch Tuesday brings us 104 new fixes, with 13 rated as critical. We’ve listed the most important changes below.

⚡ TL;DR | Go Straight to the October 2023 Patch Tuesday Audit Report

Microsoft Message Queuing Remote Code Execution Vulnerability

One of the most critical vulnerabilities lies in the Windows Message Queuing component. CVE-2023-35349 has a CVSS base score of 9.8 however in order to exploit the vulnerability, the Windows message queuing service must be installed. If the message queuing service is installed and an attacker exploits this vulnerability, it could allow an unauthenticated attacker to remotely execute code on the target server.

On top of the critical vulnerability, the MSMQ service had a total of 19 other vulnerabilities fixed! If you’re looking for an overview of all your servers that have the MSMQ service enabled, you can use our Windows Server MSMQ Server Feature Audit.

Layer 2 Tunneling Protocol RCE Vulnerabilities

A whopping nine vulnerabilities were fixed in the Layer 2 Tunneling Protocol, all with a CVSS base score of 8.1. All of them are rated as critical by Microsoft. However, an attacker needs to send a specially crafted protocol message to a Routing and Remote Access Service (RRAS) server to exploit the vulnerability.

Six SQL Server Vulnerabilities

A total of six vulnerabilities were fixed for SQL server. One Denial of Service vulnerability and five RCE vulnerabilities. For successful exploitation of the RCE, an attacker would have to trick an authenticated user into attempting to connect to a malicious SQL server via a connection driver.

To quickly get an overview of all of your SQL servers, you can use our SQL Server Role Audit to get an overview.

Run the Patch Tuesday October 2023 Audit

To help manage your update progress, we’ve created the Patch Tuesday Audit that checks if the assets in your network are on the latest patch updates. The report has been color-coded to see which machines are up-to-date and which ones still need to be updated. As always, system administrators are urged to update their environment as soon as possible to ensure all endpoints are secured.

The Lansweeper Patch Tuesday report is automatically added to your Lansweeper Site. Lansweeper Sites is included in all our licenses without any additional cost and allows you to federate all your installations into one single view so all you need to do is look at one report, automatically added every patch Tuesday!

Run the October Patch Tuesday Audit

Patch Tuesday October 2023 CVE Codes & Titles

CVE NumberCVE Title
CVE-2023-44487MITRE: CVE-2023-44487 HTTP/2 Rapid Reset Attack
CVE-2023-41774Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41773Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41772Win32k Elevation of Privilege Vulnerability
CVE-2023-41771Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41770Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41769Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41768Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41767Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41766Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability
CVE-2023-41765Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41763Skype for Business Elevation of Privilege Vulnerability
CVE-2023-38171Microsoft QUIC Denial of Service Vulnerability
CVE-2023-38166Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-38159Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2023-36902Windows Runtime Remote Code Execution Vulnerability
CVE-2023-36796Visual Studio Remote Code Execution Vulnerability
CVE-2023-36794Visual Studio Remote Code Execution Vulnerability
CVE-2023-36793Visual Studio Remote Code Execution Vulnerability
CVE-2023-36792Visual Studio Remote Code Execution Vulnerability
CVE-2023-36790Windows RDP Encoder Mirror Driver Elevation of Privilege Vulnerability
CVE-2023-36789Skype for Business Remote Code Execution Vulnerability
CVE-2023-36786Skype for Business Remote Code Execution Vulnerability
CVE-2023-36785Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
CVE-2023-36780Skype for Business Remote Code Execution Vulnerability
CVE-2023-36778Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2023-36776Win32k Elevation of Privilege Vulnerability
CVE-2023-36743Win32k Elevation of Privilege Vulnerability
CVE-2023-36737Azure Network Watcher VM Agent Elevation of Privilege Vulnerability
CVE-2023-36732Win32k Elevation of Privilege Vulnerability
CVE-2023-36731Win32k Elevation of Privilege Vulnerability
CVE-2023-36730Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
CVE-2023-36729Named Pipe File System Elevation of Privilege Vulnerability
CVE-2023-36728Microsoft SQL Server Denial of Service Vulnerability
CVE-2023-36726Windows Internet Key Exchange (IKE) Extension Elevation of Privilege Vulnerability
CVE-2023-36725Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-36724Windows Power Management Service Information Disclosure Vulnerability
CVE-2023-36723Windows Container Manager Service Elevation of Privilege Vulnerability
CVE-2023-36722Active Directory Domain Services Information Disclosure Vulnerability
CVE-2023-36721Windows Error Reporting Service Elevation of Privilege Vulnerability
CVE-2023-36720Windows Mixed Reality Developer Tools Denial of Service Vulnerability
CVE-2023-36718Microsoft Virtual Trusted Platform Module Remote Code Execution Vulnerability
CVE-2023-36717Windows Virtual Trusted Platform Module Denial of Service Vulnerability
CVE-2023-36713Windows Common Log File System Driver Information Disclosure Vulnerability
CVE-2023-36712Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-36711Windows Runtime C++ Template Library Elevation of Privilege Vulnerability
CVE-2023-36710Windows Media Foundation Core Remote Code Execution Vulnerability
CVE-2023-36709Microsoft AllJoyn API Denial of Service Vulnerability
CVE-2023-36707Windows Deployment Services Denial of Service Vulnerability
CVE-2023-36706Windows Deployment Services Information Disclosure Vulnerability
CVE-2023-36704Windows Setup Files Cleanup Remote Code Execution Vulnerability
CVE-2023-36703DHCP Server Service Denial of Service Vulnerability
CVE-2023-36702Microsoft DirectMusic Remote Code Execution Vulnerability
CVE-2023-36701Microsoft Resilient File System (ReFS) Elevation of Privilege Vulnerability
CVE-2023-36698Windows Kernel Security Feature Bypass Vulnerability
CVE-2023-36697Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36606Microsoft Message Queuing Denial of Service Vulnerability
CVE-2023-36605Windows Named Pipe Filesystem Elevation of Privilege Vulnerability
CVE-2023-36603Windows TCP/IP Denial of Service Vulnerability
CVE-2023-36602Windows TCP/IP Denial of Service Vulnerability
CVE-2023-36598Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability
CVE-2023-36596Remote Procedure Call Information Disclosure Vulnerability
CVE-2023-36594Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2023-36593Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36592Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36591Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36590Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36589Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36585Active Template Library Denial of Service Vulnerability
CVE-2023-36584Windows Mark of the Web Security Feature Bypass Vulnerability
CVE-2023-36583Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36582Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36581Microsoft Message Queuing Denial of Service Vulnerability
CVE-2023-36579Microsoft Message Queuing Denial of Service Vulnerability
CVE-2023-36578Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36577Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2023-36576Windows Kernel Information Disclosure Vulnerability
CVE-2023-36575Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36574Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36573Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36572Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36571Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36570Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36569Microsoft Office Elevation of Privilege Vulnerability
CVE-2023-36568Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
CVE-2023-36567Windows Deployment Services Information Disclosure Vulnerability
CVE-2023-36566Microsoft Common Data Model SDK Denial of Service Vulnerability
CVE-2023-36565Microsoft Office Graphics Elevation of Privilege Vulnerability
CVE-2023-36564Windows Search Security Feature Bypass Vulnerability
CVE-2023-36563Microsoft WordPad Information Disclosure Vulnerability
CVE-2023-36561Azure DevOps Server Elevation of Privilege Vulnerability
CVE-2023-36557PrintHTML API Remote Code Execution Vulnerability
CVE-2023-36438Windows TCP/IP Information Disclosure Vulnerability
CVE-2023-36436Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2023-36435Microsoft QUIC Denial of Service Vulnerability
CVE-2023-36434Windows IIS Server Elevation of Privilege Vulnerability
CVE-2023-36433Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
CVE-2023-36431Microsoft Message Queuing Denial of Service Vulnerability
CVE-2023-36429Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
CVE-2023-36420Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
CVE-2023-36419Azure HDInsight Apache Oozie Workflow Scheduler Elevation of Privilege Vulnerability
CVE-2023-36418Azure RTOS GUIX Studio Remote Code Execution Vulnerability
CVE-2023-36417Microsoft SQL ODBC Driver Remote Code Execution Vulnerability
CVE-2023-36416Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-36415Azure Identity SDK Remote Code Execution Vulnerability
CVE-2023-36414Azure Identity SDK Remote Code Execution Vulnerability
CVE-2023-35349Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-29348Windows Remote Desktop Gateway (RD Gateway) Information Disclosure Vulnerability
CVE-2023-21709Microsoft Exchange Server Elevation of Privilege Vulnerability
CVE-2022-37967Windows Kerberos Elevation of Privilege Vulnerability

NO CREDIT CARD REQUIRED

Ready to get started?
You’ll be up and running in no time.

Explore all our features, free for 14 days.