Microsoft has evidence of in-the-wild exploitation ... or public disclosure for 10 of the vulnerabilities published today, which is significantly more than usual.
At time of writing, all six of the known exploited vulnerabilities patched today are listed on the CISA KEV database. Microsoft is also patching five critical remote code execution (RCE) vulnerabilities today.
As something of an olive branch for defenders who may now be eyeing their to-do list with concern, Microsoft has not published any SharePoint or Exchange vulnerabilities this month.
Patch Tuesday watchers will know that today's haul of four publicly-disclosed vulnerabilities and six further exploited-in-the-wild vulnerabilities is a much larger batch than usual.
[
Collection
]
[
|
...
]