Patch Tuesday

Microsoft has released updates today for the Windows 10 operating system, as well as for other of the company's products, updates that fix 55 security issues ranging from remote code execution to simple spoofing attacks.

The products that received security updates are Internet Explorer, Microsoft Edge, Microsoft Windows, Microsoft Office and Microsoft Office Services and Web Apps, .NET Framework, Adobe Flash Player, and Microsoft Exchange Server.

Since Microsoft stop providing Security Bulletins in April, reading Microsoft new Security Update Guide is a little bit harder for the casual user, so we used a PowerShell script put together by Microsoft employee John Lambert to create a simple table that summarizes all the vulnerabilities Microsoft patched this month.

Product CVE ID CVE Title
.NET Framework CVE-2017-8585 .NET Denial of Service Vulnerability
Adobe Flash Player ADV170009 July Flash Security Update
ASP .NET CVE-2017-8582 Https.sys Information Disclosure Vulnerability
HoloLens CVE-2017-8584 HoloLens Remote Code Execution Vulnerability
Internet Explorer CVE-2017-8592 Microsoft Browser Security Feature Bypass
Internet Explorer CVE-2017-8594 Internet Explorer Memory Corruption Vulnerability
Internet Explorer CVE-2017-8618 Scripting Engine Memory Corruption Vulnerability
Kerberos CVE-2017-8495 Kerberos SNAME Security Feature Bypass Vulnerability
Microsoft Browsers CVE-2017-8602 Microsoft Browser Spoofing Vulnerability
Microsoft Edge CVE-2017-8611 Microsoft Edge Spoofing Vulnerability
Microsoft Edge CVE-2017-8596 Microsoft Edge Memory Corruption Vulnerability
Microsoft Edge CVE-2017-8617 Microsoft Edge Remote Code Execution Vulnerability
Microsoft Edge CVE-2017-8599 Microsoft Edge Security Feature Bypass Vulnerability
Microsoft Edge CVE-2017-8619 Scripting Engine Memory Corruption Vulnerability
Microsoft Exchange Server CVE-2017-8621 Microsoft Exchange Open Redirect Vulnerability
Microsoft Exchange Server CVE-2017-8560 Microsoft Exchange Cross-Site Scripting Vulnerability
Microsoft Exchange Server CVE-2017-8559 Microsoft Exchange Cross-Site Scripting Vulnerability
Microsoft Graphics Component CVE-2017-8577 Win32k Elevation of Privilege Vulnerability
Microsoft Graphics Component CVE-2017-8578 Win32k Elevation of Privilege Vulnerability
Microsoft Graphics Component CVE-2017-8573 Microsoft Graphics Component Elevation of Privilege Vulnerability
Microsoft Graphics Component CVE-2017-8574 Microsoft Graphics Component Elevation of Privilege Vulnerability
Microsoft Graphics Component CVE-2017-8556 Microsoft Graphics Component Elevation of Privilege Vulnerability
Microsoft Graphics Component CVE-2017-8580 Win32k Elevation of Privilege Vulnerability
Microsoft NTFS CVE-2017-8587 Windows Explorer Denial of Service Vulnerability
Microsoft Office CVE-2017-0243 Microsoft Office Remote Code Execution Vulnerability
Microsoft Office CVE-2017-8502 Microsoft Office Memory Corruption Vulnerability
Microsoft Office CVE-2017-8501 Microsoft Office Memory Corruption Vulnerability
Microsoft Office CVE-2017-8570 Microsoft Office Remote Code Execution Vulnerability
Microsoft Office CVE-2017-8569 SharePoint Server XSS Vulnerability
Microsoft PowerShell CVE-2017-8565 Windows PowerShell Remote Code Execution Vulnerability
Microsoft Scripting Engine CVE-2017-8610 Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting Engine CVE-2017-8601 Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting Engine CVE-2017-8604 Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting Engine CVE-2017-8598 Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting Engine CVE-2017-8608 Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting Engine CVE-2017-8605 Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting Engine CVE-2017-8606 Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting Engine CVE-2017-8603 Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting Engine CVE-2017-8607 Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting Engine CVE-2017-8609 Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting Engine CVE-2017-8595 Scripting Engine Memory Corruption Vulnerability
Microsoft Windows CVE-2017-8557 Windows System Information Console Information Disclosure Vulnerability
Microsoft Windows CVE-2017-8566 Windows IME Elevation of Privilege Vulnerability
Microsoft Windows CVE-2017-0170 Windows Performance Monitor Information Disclosure Vulnerability
Microsoft Windows CVE-2017-8590 Windows CLFS Elevation of Privilege Vulnerability
Microsoft Windows CVE-2017-8562 Windows ALPC Elevation of Privilege Vulnerability
Microsoft Windows CVE-2017-8589 Windows Search Remote Code Execution Vulnerability
Microsoft Windows CVE-2017-8563 Windows Elevation of Privilege Vulnerability
Microsoft WordPad CVE-2017-8588 WordPad Remote Code Execution Vulnerability
Windows Kernel CVE-2017-8564 Windows Kernel Information Disclosure Vulnerability
Windows Kernel CVE-2017-8561 Windows Kernel Elevation of Privilege Vulnerability
Windows Kernel-Mode Drivers CVE-2017-8486 Win32k Information Disclosure Vulnerability
Windows Kernel-Mode Drivers CVE-2017-8467 Win32k Elevation of Privilege Vulnerability
Windows Kernel-Mode Drivers CVE-2017-8581 Win32k Elevation of Privilege Vulnerability
Windows Shell CVE-2017-8463 Windows Explorer Remote Code Execution Vulnerability

The table above only shows a small portion of the reports you can get via Lambert's tool. The full report for Microsoft's July 2017 Patch Tuesday is available here, containing all the security updates on the same page. If you're not interested in all security updates and you'd like to filter updates per product, you can use Microsoft's official Security Update Guide available here.