Skip to content ↓ | Skip to navigation ↓

Tripwire’s March 2019 Patch Priority Index (PPI) brings together the top vulnerabilities for March 2019.

First on the patch priority list this month are patches for Microsoft’s Browser, Scripting Engine and VBScript. These patches resolve 23 vulnerabilities, including fixes for Memory Corruption, Elevation of Privilege, Security Feature Bypass and Remote Code Execution vulnerabilities.

Next on the list are patches for Microsoft Office Access. This patch resolves a Remote Code Execution vulnerability.

Up next are patches for Microsoft Windows. These patches address 27 vulnerabilities across Windows Kernel, Jet Database Engine, Hyper-V, DHCP client, GDI, SMB, XML, Print Spooler, Comctl32 and Windows Subsystem for Linux. These patches fix various vulnerabilities including Elevation of Privilege, Information Disclosure, Denial of Service and Remote Code Execution vulnerabilities.

Finally this month, administrators should focus on server-side patches available for Microsoft SharePoint, Active Directory, Windows Deployment Services, Lync and Skype for Business. These patches resolve four vulnerabilities including Elevation of Privilege, Spoofing, XSS and Remote Code Execution vulnerabilities.

BULLETIN CVE
Microsoft Browser CVE-2019-0763,CVE-2019-0761,CVE-2019-0768,CVE-2019-0780,CVE-2019-0762,CVE-2019-0678,CVE-2019-0779,CVE-2019-0612
Scripting Engine CVE-2019-0611,CVE-2019-0592,CVE-2019-0746,CVE-2019-0773,CVE-2019-0639,CVE-2019-0771,CVE-2019-0770,CVE-2019-0609,CVE-2019-0783,CVE-2019-0769,CVE-2019-0680
VBScript
CVE-2019-0666,CVE-2019-0665,CVE-2019-0667,CVE-2019-0772
Microsoft Office

 

CVE-2019-0748
Windows
CVE-2019-0765,CVE-2019-0617,CVE-2019-0756,CVE-2019-0766,CVE-2019-0797,CVE-2019-0808,CVE-2019-0776,CVE-2019-0784,CVE-2019-0697,CVE-2019-0698,CVE-2019-0726,CVE-2019-0754,CVE-2019-0614,CVE-2019-0774,CVE-2019-0690,CVE-2019-0695,CVE-2019-0701,CVE-2019-0696,CVE-2019-0775,CVE-2019-0755,CVE-2019-0702,CVE-2019-0767,CVE-2019-0782,CVE-2019-0759,CVE-2019-0704,CVE-2019-0703,CVE-2019-0821
Windows Subsystem for Linux CVE-2019-0692,CVE-2019-0693,CVE-2019-0694,CVE-2019-0682,CVE-2019-0689
Active Directory CVE-2019-0683
Windows Deployment Services CVE-2019-0603
Microsoft SharePoint CVE-2019-0778
Lync & Skype for Business CVE-2019-0798

 

To learn more about Tripwire’s Vulnerability and Exposure Research Team (VERT), click here.

Or you can follow VERT on Twitter: @tripwirevert