Hello and welcome to the Wednesday, April 10, 2024 edition of the Sandsenet Storm Center's Stormcast.

My name is Johannes Ulrich and today I'm recording from London, England.

It's Microsoft Patch Tuesday and well with that, let's get started talking about some of the vulnerabilities Microsoft addressed

in today's update. There are a total of 157 vulnerabilities being addressed this month in total.

Now, seven of them were known before today. These are chromium vulnerabilities that affected Microsoft Edge. Out of the remaining

150 vulnerabilities, we have one important vulnerability that has already been exploited and has been

made public before today. It's a proxy driver spoofing vulnerability. I haven't had a lot of luck finding details,

even though it is labeled as being known and being made public before today. But that may

just be a matter of not finding the right CVE, or maybe the CVE number was not attached to

some of the earlier reports.

Now, we only got three critical vulnerabilities this month, and all critical

vulnerabilities are affecting Microsoft Defender for IoT, and they represent a remote

code execution vulnerability.

Another little odd thing is that we got about 40

and it's a little bit hard to count them all.

Important vulnerability that all affect Microsoft OLE drivers

for SQL servers.

Now, when I read this first, it's a remote code execution vulnerability.

I was a little bit surprised that it's rated as important, not critical.

However, that rating makes sense when you're looking at some of the details.

This does not affect the server at all.

It affects the clients.

...