Cyber Security, Microsoft fixes 129 product vulnerabilities at once. Eleven were critical, but none of them has been exploited by cybercrime. SecurityAffairs: One was located in the Server Message Block (SMB) protocol, and dubbed SMBleed
Microsoft has fixed 129 vulnerabilities affecting different products with the June 2020 security updates. The flaws were related to Windows, Internet Explorer (IE), Microsoft Edge (EdgeHTML-based and Chromium-based in IE Mode), ChakraCore, Office and Microsoft Office Services and Web Apps, Windows Defender, Microsoft Dynamics, Visual Studio, Azure DevOps, and Android App. Eleven of them were rated as Critical while 118 are as Important in severity for the cyber security. However, none of them is known to be exploited by cybercrime, or disclosed publicly before the official note. One of them was very dangerous according to SecurityAffairs. It was located in the Server Message Block (SMB) protocol, and dubbed SMBleed (CVE-2020-1206). It could allow an attacker to leak kernel memory remotely, without authentication. Furthermore, the SMBleed vulnerability could be exploited along with other issues to remotely execute arbitrary code, as the SMBGhost (CVE-2020-0796).