Microsoft released 50 updates during its monthly Patch Tuesday release. Eleven are rated critical remote code execution vulnerabilities and 39 are listed as important.
The most critical patches impact Microsoft OS and Internet Explorer and deploying the fixes for these vulnerabilities is recommended immediately.
Also of note: one of the vulnerabilities, a remote code execution flaw (CVE-2018-8267) in the scripting engine, is listed as being publicly known, but not under active attack, at this time.
Here are highlights from this month’s release with the information you need to prioritize your patching efforts.
Most Critical Patches
Analysis from researchers on this month’s release advises Windows admins to prioritize CVE-2018-8225, a remote code execution vulnerability that occurs when the Windows Domain Name System (DNS) component DNSAPI.dll fails to handle DNS responses properly.