Microsoft fixed 88 vulnerabilities on Tuesday as part of its monthly patching cycle. Six of those flaws were already being actively exploited in the wild before a patch was available and another four were publicly disclosed, putting the total number of zero-day vulnerabilities covered in this release at 10.
Of the 88 vulnerabilities patched only seven are rated critical, 79 are rated important, and one is rated moderate. But severity isn’t everything when it comes to prioritizing patch deployments, as attackers are regularly exploiting non-critical flaws as part of their attack chains.
“While this isn’t the biggest release, it is unusual to see so many bugs listed as public or under active attack in a single release,” researchers from Trend Micro’s Zero Day Initiative (ZDI) program wrote in an analysis.