Actualizaciones de seguridad de Microsoft de junio de 2023

Fecha de publicación:

14/06/2023

Importancia:

5 – Crítica

Recursos Afectados:

.NET 6.0 y 7.0;
Azure DevOps Server 2020.1.2, 2022 y 2022.0.1;
Dynamics 365 para Finance y Operations;
Microsoft .NET Framework 2.0 Service Pack 2, 3.0 Service Pack 2;
Microsoft .NET Framework 3.5 y 4.6.2, 4.7, 4.7.1, 4.7.2;
Microsoft .NET Framework 3.5, 3.5.1, 4.8, 4.8.1;
Microsoft 365 Apps para Enterprise para 32-bit y 64-bit Systems;
Microsoft Edge (Chromium-based);
Microsoft Excel 2013 RT Service Pack 1(32-bit s y 64-bit s);
Microsoft Excel 2016 (32-bit y 64-bit);
Microsoft Exchange Server 2016 Cumulative Update 23;
Microsoft Exchange Server 2019 Cumulative Update 12;
Microsoft Exchange Server 2019 Cumulative Update 13;
Microsoft Office 2019 para 32-bit s, 64-bit s, Mac;
Microsoft Office LTSC 2021 para 32-bit s, 64-bit s y Mac 2021;
Microsoft Office Online Server;
Microsoft OneNote para Universal;
Microsoft Outlook 2013 (32-bit s y 64-bit s);
Microsoft Outlook 2013 RT Service Pack 1;
Microsoft Outlook 2016 (32-bit);
Microsoft Outlook 2016 (64-bit);
Microsoft Power Apps;
Microsoft SharePoint Enterprise Server 2016;
Microsoft SharePoint Server 2019;
Microsoft SharePoint Server Subscription;
Microsoft Visual Studio 2013 Update 5;
Microsoft Visual Studio 2015 Update 3;
Microsoft Visual Studio 2017 versión 15.9 (incluidos 15.0 – 15.8);
Microsoft Visual Studio 2019 versión 16.11 (incluidos 16.0 – 16.10);
Microsoft Visual Studio 2022 versiones de 17.0 a 17.6;
NuGet 6.0.4, 6.2.3, 6.3.2, 6.4.1, 6.5.0, 6.6.0;
Remote Desktop client para Windows Desktop;
Sysinternals Suite;
Visual Studio Code;
Windows 10 para 32-bit Systems y x64-based Systems;
Windows 10 Versión 1607 para 32-bit Systems y x64-based Systems;
Windows 10 Versión 1809 para 32-bit Systems, x64-based Systems y ARM64-based Systems;
Windows 10 Versión 21H2 para 32-bit Systems, ARM64-based Systems y x64-based Systems;
Windows 10 Versión 22H2 para 32-bit Systems, ARM64-based Systems y x64-based Systems;
Windows 11 versión 21H2 para ARM64-based Systems y x64-based Systems;
Windows 11 Versión 22H2 para ARM64-based Systems y x64-based Systems;
Windows Server 2008 para 32-bit Systems Service Pack 2;
Windows Server 2008 para 32-bit Systems Service Pack 2 (Server Core instalación);
Windows Server 2008 para x64-based Systems Service Pack 2;
Windows Server 2008 para x64-based Systems Service Pack 2 (Server Core instalación);
Windows Server 2008 R2 para x64-based Systems Service Pack 1;
Windows Server 2008 R2 para x64-based Systems Service Pack 1 (Server Core instalación);
Windows Server 2012 y (Server Core instalación);
Windows Server 2012 R2 y (Server Core instalación);
Windows Server 2016 y (Server Core instalación);
Windows Server 2019 y (Server Core instalación);
Windows Server 2022 y (Server Core instalación);
Windows Sysinternals Process Monitor;
YARP 2.0.

Descripción:

La publicación de actualizaciones de seguridad de Microsoft, correspondiente a la publicación de vulnerabilidades del 13 de junio, consta de 78 vulnerabilidades (con CVE asignado), calificadas como: 6 de severidad crítica y 72 importantes.

Solución:

Instalar la actualización de seguridad correspondiente. En la página de Microsoft se informa de los distintos métodos para llevar a cabo dichas actualizaciones.

Detalle:

Las vulnerabilidades publicadas se corresponden con los siguientes tipos:

escalada de privilegios,
ejecución remota de código,
denegación de servicio.

Se han asignado los identificadores CVE-2023-24897, CVE-2023-29357, CVE-2023-32015, CVE-2023-32014, CVE-2023-32013 y CVE-2023-29363 para las vulnerabilidades críticas.

blogweb2023-06-15T09:35:48+02:0015 junio 2023|Categorías: Alertas de ciberseguridad|

Cookie	Duración	Descripción
__cf_bm	1 hour	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
__cfruid	session	Cloudflare sets this cookie to identify trusted web traffic.
apbct_headless	session	Cleantalk set this cookie to detect spam and improve the website's security.
apbct_prev_referer	session	Functional cookie placed by CleanTalk Spam Protect to store referring IDs and prevent unauthorized spam from being sent from the website.
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
ct_pointer_data	session	CleanTalk–Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
ct_timezone	session	CleanTalk–Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
JSESSIONID	session	New Relic uses this cookie to store a session identifier so that New Relic can monitor session counts for an application.
TS01*	session	Wix sets this cookie for security and anti-fraud purposes.
viewed_cookie_policy	11 months	La cookie está configurada por el complemento de consentimiento de cookies de GDPR y se utiliza para almacenar si el usuario ha dado su consentimiento o no para el uso de cookies. No almacena ningún dato personal.

Cookie	Duración	Descripción
_cfuvid	session	Description is currently not available.
apbct_cookies_test	session	CleanTalk–Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
apbct_page_hits	session	CleanTalk–Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
apbct_site_landing_ts	session	CleanTalk–Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
apbct_site_referer	3 days	No description available.
apbct_timestamp	session	CleanTalk–Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
apbct_urls	3 days	No description available.
apbct_visible_fields	session	CleanTalk–Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
ct_checked_emails	session	No description
ct_checkjs	session	CleanTalk–Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
ct_fkp_timestamp	session	CleanTalk–Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
ct_has_scrolled	session	No description
ct_ps_timestamp	session	CleanTalk–Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
ct_screen_info	session	No description
ct_sfw_pass_key	1 month	CleanTalk–Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
NSC_wt_mc_bqbdif-12218	session	Description is currently not available.
varnish	session	Description is currently not available.

Cookie	Duración	Descripción
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.
vuid	1 year 1 month 4 days	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos on the website.

Actualizaciones de seguridad de Microsoft de junio de 2023