Automox Patch Tuesday Rapid Response Center.

So you can eliminate your emerging endpoint vulnerabilities before they’re exploited.

Every Patch Tuesday, speed is your biggest advantage for ensuring the security of your infrastructure. It’s a race to harden your endpoints before adversaries exploit these new vulnerabilities.

Automox is here for you. Our experts analyze Patch Tuesday announcements from Microsoft, Adobe, and more to give you strategies for acting now. Turn here for intelligence alerts, recommended remediation strategies for current vulnerabilities and exploits, and a live webinar that breaks down these new threats.

HAPPENING NOW

date

January 2020

Patch Tuesday Action Plan

8 critical
41 high
0 medium
0 low
5 critical
3 high
1 medium
0 low
1 critical
5 high
5 medium
1 low
70
Vulnerabilities
14
Critical
1
Zero-days
details

The first Patch Tuesday of 2020 brought 49 Microsoft vulnerabilities, 8 of which were deemed critical. This Patch Tuesday also marks the Windows 7 and Server 2008 End-of-Lives, which explains the 23 security fixes for those two products.

View the Automox Automating Patch Tuesday webinar below for insight around the dangerous vulnerability discovered by the NSA, multiple new remote code execution vulnerabilities, and in-depth discussion around the latest Microsoft and third-party patches.

PREVIOUS ACTION PLANS

date

December 2019

Patch Tuesday Action Plan

7 critical
28 high
1 medium
0 low
2 critical
2 high
0 medium
0 low
0 critical
8 high
0 medium
0 low
0 critical
6 high
5 medium
0 low
60
Vulnerabilities
9
Critical
1
Zero-days
details

December's Patch Tuesday gave us 60 total vulnerabilities, 9 of which were critical. Microsoft dropped off 36 vulnerabilities with 7 of those being critical and CVE-2019-1458 being the lone zero-day. Check out the Automox patch index for all the patches released in one easy location. That includes Microsoft, Adobe, Apple, and Mozilla Firefox.

To make your holidays brighter, check out our Patch Tuesday webinar. Richard Melick, Automox Technology Raconteur, covers December's patches and their security impact, big releases in the OS space and third-party software patches, and showcases how Automox can help tackle your Patch Tuesdays.

date

November 2019

Patch Tuesday Action Plan

13 critical
60 high
0 medium
1 low
3 critical
8 high
0 medium
0 low
0 critical
5 high
0 medium
0 low
0 critical
31 high
0 medium
0 low
0 critical
5 high
0 medium
0 low
136
Vulnerabilities
16
Critical
1
Zero-days
details

For November 2019, we're looking at 74 vulnerability fixes from Microsoft, over a dozen of which are rated “critical.” This includes resolving a zero-day vulnerability in Internet Explorer that was actively being exploited in the wild, as well as a patch for a publicly disclosed vulnerability. With patching, time is truly of the essence – but especially when it comes to zero days.

Adobe has also released three critical security updates related to memory corruption vulnerabilities that can lead to remote code execution.

date

October 2019

Patch Tuesday Action Plan

9 critical
49 high
1 medium
0 low
2 critical
22 high
0 medium
0 low
83
Vulnerabilities
11
Critical
0
Zero-days
details

October was a relatively quiet month in terms of patching. Microsoft released fixes for 59 vulnerabilities, nine of which were Critical. Apple released security updates for select versions of iCloud, iTunes and Catalina macOS. A patch was made available to address a major zero-day vulnerability for Android devices. While Google normally rolls out patches for its own devices, multiple Android carriers released their own patches to address this potential threat.

In a rare update at the end of September, Microsoft released out-of-band updates for all versions of Windows. These patches addressed critical Internet Explorer and Windows Defender bugs. Adobe also released an emergency patch to address a series of critical vulnerabilities for ColdFusion.

date

September 2019

Patch Tuesday Action Plan

2 critical
1 high
0 medium
0 low
17 critical
62 high
1 medium
0 low
83
Vulnerabilities
19
Critical
2
Zero-days
details

In September, Microsoft released 80 updates, 17 of which were Critical. Three of the vulnerabilities addressed were publicly disclosed – and two had known exploits. Microsoft recommended users apply available updates as soon as possible to safeguard against potential threats. A majority of the patches released from Microsoft focused on Windows 10, but some addressed bugs in the Windows 7 ecosystem.

Security updates from Adobe for Flash Player and Application Manager were also available. Adobe recommends that users patch Flash Player immediately due to critically rated vulnerabilities.