Microsoft today issued security updates for 71 software vulnerabilities, three of which were critical and one that has a known proof-of-concept available in the public domain.
Among the most notable flaws fixed today by Microsoft are:
CVE-2022-23277 Microsoft Exchange Server Remote Code Execution Vulnerability
This is a critical bug that could allow an attacker who has been authenticated to the server run malicious code.
CVE-2022-21990 Remote Desktop Client Remote Code Execution Vulnerability