Microsoft Patch Tuesday September - Summary

11

Bulletin

156

Patches

53

Updates

129

Vulnerabilities

7

Impacts

CVE Index for September Patch Tuesday Updates

Component Impact CVE ID Type of update
Microsoft Browsers Memory Corruption CVE-2020-0878 Security Update
Memory Dynamics Remote Code Execution CVE-2020-16857 Security Update
Memory Dynamics Remote Code Execution CVE-2020-16862 Security Update
Microsoft Exchange Server Memory Corruption CVE-2020-16875 Security Update
Microsoft Graphics Component Remote Code Execution CVE-2020-1285 Monthly Rollup
Microsoft Office SharePoint Remote Code Execution CVE-2020-1210 Security Update
Microsoft Office SharePoint Remote Code Execution CVE-2020-1595 Security Update
Microsoft Office SharePoint Remote Code Execution CVE-2020-1200 Security Update
Microsoft Office SharePoint Remote Code Execution CVE-2020-1576 Security Update
Microsoft Office SharePoint Remote Code Execution CVE-2020-1452 Security Update
Microsoft Office SharePoint Remote Code Execution CVE-2020-1453 Security Update
Microsoft Office SharePoint Remote Code Execution CVE-2020-1460 Security Update
Microsoft Scripting Engine Memory Corruption CVE-2020-1057 Security Update
Microsoft Scripting Engine Memory Corruption CVE-2020-1172 Security Update
Microsoft Windows Remote Code Execution CVE-2020-1593 Monthly Rollup
Microsoft Windows Remote Code Execution CVE-2020-0922 Monthly Rollup
Microsoft Windows Remote Code Execution CVE-2020-1252 Monthly Rollup
Microsoft Windows Remote Code Execution CVE-2020-1508 Monthly Rollup
Microsoft Windows Remote Code Execution CVE-2020-0908 Security Update
Microsoft Windows Codecs Library Remote Code Execution CVE-2020-1319 Security Update
Microsoft Windows Codecs Library Remote Code Execution CVE-2020-0997 Security Update
Microsoft Windows Codecs Library Remote Code Execution CVE-2020-1129 Security Update
Visual Studio Remote Code Execution CVE-2020-16874 Security Update

No Zero-day vulnerabilities patched

Previous Patch Tuesday Updates and Fixes

pt-ebook-banner

Microsoft Windows Patch Tuesday - Overview

What is Patch Tuesday?

Patch Tuesday, the colloquial term for Microsoft's Update Tuesday that falls on second Tuesday of every month. That is when Microsoft rolls out patch updates to improve security of Microsoft applications. Coinciding with the Patch Tuesday it is also a general trend for the roll out of patch updates for other third party applications that include Adobe and Mozilla, among many others.

When is Patch Tuesday?

The upcoming Patch Tuesday falls on October 13, 2020.

What is patching and why is it important?

Patches are nothing but pieces of software code that are written to fix a bug in a software application, that might lead to a vulnerability. Such vulnerabilities in any application are loop holes for attackers to get their hands on business critical data and information. So it is highly crucial to keep all the applications in a network updated to its latest versions. Updating applications in mobile phones and laptops also work in the same manner by preventing theft of personal data, through security flaws.

What kind of patch updates are released during Patch Tuesday?

Predominantly security patch updates of varying severity like Critical, Important, Moderate & Low are labeled and released. It is always a best practice to prioritize your patching based on the severity level mentioned.

What are CVE IDs?

CVE ID - Common Vulnerabilities and Exposure ID is a format in which each vulnerability is disclosed and cataloged in the National Vulnerability Database (NVD). You can look up for a detailed explanation of each vulnerability in the NVD with the help of CVE ID. In Patch Manager Plus you can make use of these CVE IDs to fetch the appropriate patches to deploy. You can find the CVE IDs here.

How to register for ManageEngine's Free Patch Tuesday webinar?

The upcoming Free Patch Tuesday webinar by ManageEngine is scheduled on -. You can make your registrations here

Where can I find more details about individual bulletins?

Each CVE ID listed in the CVE Index section has been linked to its security advisory.