Patch Impact Assessment March 2019

Vulnerability Assessment

4

PUBLICLY DISCLOSED

2

EXPLOITED

2

ZERO-DAY

This is a large and urgent update to the Windows platforms and Microsoft Browsers (IE11 and Edge). With four publicly disclosed vulnerabilities, and two zero-day exploits, ensure that your browser and Windows updates are a top priority for this March Patch Tuesday.

Windows

This Windows update for March addresses 35 vulnerabilities, with six rated as critical and two rated as zero-days. This is a massive and urgent update for Windows.  Add this updates to your “Patch Now” release schedule.

VULNERABILITIES

0
LOW

0
MODERATE

29
IMPORTANT

6
CRITICAL

PATCH NOW!

Browsers

Microsoft has released eleven updates rated as critical for both browsers (Internet Explorer 11 and Microsoft Edge). Even if these updates were not accompanied by a further eleven important and moderate updates, this patch release should be a “Patch Now” update from Microsoft.

VULNERABILITIES

11
LOW

11
MODERATE

11
IMPORTANT

11
CRITICAL

PATCH NOW!

Office

The March Microsoft update cycle has been relatively kind to Microsoft Office, with only three reporterd vulnerabilities rated as important by Microsoft. Add this Microsoft Office update to your standard patch deployment schedule.

VULNERABILITIES

0
LOW

0
MODERATE

3
IMPORTANT

0
CRITICAL

SCHEDULE

Dev Tools

This month Microsoft has attempted to address six vulnerabilities rated as critical relating to remote code execution scenarios in the Chakra Core scripting engine. Given the overlap with the browser (Edge) updates this month, these development and scripting engine updates can be included in your standard development platform update regime.

VULNERABILITIES

1
LOW

0
MODERATE

4
IMPORTANT

6
CRITICAL

TEST

Adobe Flash Player

You can read more (and not much more) about this minor security update from Adobe here.

Add this minor update to your standard patch deployment effort.

VULNERABILITIES

0
LOW

0
MODERATE

0
IMPORTANT

0
CRITICAL

SCHEDULE

Related Posts

Patch Tuesday

A Challenging Patch Tuesday for Legacy Windows Platforms

This is a big Patch Tuesday for some Windows users. Older systems such as Windows 7 and Server 2008 need both urgent and important updates to resolve publicly disclosed and exploited vulnerabilities. If you are running later versions of Windows 10, the situation is much improved, with recommendations for scheduled updates and comprehensive testing before deployment.

Read More
Patch Impact Assessment Summary

Patch Impact Assessment July 2019

This is a big Patch Tuesday for some Windows users. Older systems such as Windows 7 and Server 2008 need both urgent and important updates to resolve publicly disclosed and exploited vulnerabilities.

Read More
Patch Tuesday

Big, complex Patch Tuesday for Windows, critical updates for Adobe and Edge

This month, Microsoft delivers a big, complex series of updates to Windows, Azure and Edge. With 88 vulnerabilities addressed and four made public, we see “Patch Now” recommendations for both browsers, Windows and Adobe.

Read More