The following Jan patches should have a severity rating of Important, content team please update.
ID
Name
Source Severity
447138901
MS19-JAN: Security update for Microsoft Exchange Server 2019, 2016, and 2013 - Exchange Server 2013 CU21 SP1 - KB4471389 (x64)
Unspecified
447138905
MS19-JAN: Security update for Microsoft Exchange Server 2019, 2016, and 2013 - Exchange Server 2016 CU10 - KB4471389 (x64)
Unspecified
447138903
MS19-JAN: Security update for Microsoft Exchange Server 2019, 2016, and 2013 - Exchange Server 2016 CU11 - KB4471389 (x64)
Unspecified
reference - https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0588
@BaiYunfei
Aram
March 25, 2019, 3:36pm
2
As a note, it seems the severity has not been specified/updated on Microsoft’s Update Catalog:
Is that the same for 2016, as the link sent indicates Important ?
Aram
March 25, 2019, 3:40pm
4
Yes, each update I just checked includes an ‘unspecified’ severity:
https://www.catalog.update.microsoft.com/Search.aspx?q=KB4471389
We can explore updating our content naturally, however, as a note, we generally reference the severity specified in the Microsoft Update Catalog.
Thanks for checking Aram. Its one of those frustrating ones when Microsoft/BigFix differ significantly from tools like Nessus. This is one for Microsoft to address, and I guess BigFix will follow suit after …
Man, if I had a nickel for every time Nessus reported a totally different severity than Microsoft…
bma
March 26, 2019, 12:23am
7
Sometimes the MS catalog can be inconsistent.
In this case, it makes sense to label these fixlets with the “Important” rating despite what the catalog reports.
The team has updated the fixlets in Patches for Windows version 3230.
Content in the Patches for Windows site has been modified.
New:
[Major] 4346085: Intel microcode updates - Windows 10 Version 1709 - KB4346085 (x64) (V3.0) (ID: 434608509)
[Major] 4346086: Intel microcode updates - Windows 10 Version 1703 - KB4346086 (x64) (V3.0) (ID: 434608605)
[Major] 4346087: Intel microcode updates - Windows 10 Version 1607 - KB4346087 (x64) (V3.0) (ID: 434608709)
[Major] 4346088: Intel microcode updates - Windows 10 Version 1507 LTSB - KB4346088 (x64) (V2.0) (ID: 43460…
1 Like