Microsoft has recently patched 123 vulnerabilities from its security updates for July 2020. This includes 18 critical vulnerabilities that can lead to remote code execution. They can impact Windows, Internet Explorer, the .NET framework, SharePoint, Office, Visual Studio, and Hyper-V.
The most severe vulnerability patched of this month is the CVE-2020-1350. It can affect Windows DNS servers, allowing an unauthenticated attacker to carry out an arbitrary code in local system account – by sharing crafted requests into the server.
Microsoft has explained this vulnerability as wormable and has advised users to install the patch sooner due to high exploitation risk.
Source: SecurityWeek