Microsoft Releases Security Updates to Address Remote Code Execution Vulnerabilities

Threat ID:: CC-3641
Threat Severity:: Information only
Published:: 21 October 2020 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Affected platforms

The following platforms are known to be affected:

Versions: 1709, 1803, 1809, 1903, 1909, 2004

Windows 10

Versions: prior to 1.50

Microsoft Visual Studio

Threat details

Introduction

Microsoft has released security updates to address remote code execution vulnerabilities affecting Windows Codecs Library and Visual Studio Code. An attacker could exploit these vulnerabilities to take control of an affected system.

Remediation advice

Affected organisations are encouraged to review the Microsoft security advisories for CVE-2020-17022 and CVE-2020-17023 and apply the necessary updates.

Last edited: 22 October 2020 2:56 pm