Welcome to our summary of the final Patch Tuesday of the year (December 2022). We have tabulated the vulnerabilities that the latest patches from Microsoft, so that you can easily export them for use in your vulnerability management program.

Rootshell users have already benefited from the platform’s Active Exploit Detection, which automatically alerts you to active exploits affecting issues within your estate.

Microsoft’s December 2022 Patch Tuesday announces fixes for 49 issues, two of which are zero-day vulnerabilities, including an actively exploited bug. Rootshell has already alerted users whose estates contain these active exploits.

6 of the 49 vulnerabilities are Critical, due to the fact that they allow remote code execution.

This update contains 19 Elevation of Privilege Vulnerabilities, 2 Security Feature Bypass Vulnerabilities, 23 Remote Code Execution Vulnerabilities, 3 Information Disclosure Vulnerabilities, 3 Denial of Service Vulnerabilities, 1 Spoofing Vulnerability. These numbers do not include twenty-five Microsoft Edge vulnerabilities previously fixed on December 5th.

Microsoft’s December Patch Tuesday fixes two zero-day vulnerabilities, one actively exploited and the other publicly disclosed.

The actively exploited and publicly disclosed zero-day vulnerability fixed in today’s updates are:

• CVE-2022-44698 – Windows SmartScreen Security Feature Bypass Vulnerability

An attacker can craft a malicious file that would evade Mark of the Web (MOTW) defenses, resulting in a limited loss of integrity and availability of security features such as Protected View in Microsoft Office, which rely on MOTW tagging.

• CVE-2022-44710 – DirectX Graphics Kernel Elevation of Privilege Vulnerability

Successful exploitation of this vulnerability requires an attacker to win a race condition. An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.

[wpdatatable id=”10″ /][wpdatatable id=”0″ /]