Navigating the Microsoft Graph API with SDK Webinar. Wednesday, July 31. Register Here

We help you save time, money and improve your IT security

Integrate Third-Party Patch Management in Microsoft ConfigMgr and Intune

Patch Tuesday Support Group July Webinar

Webinar Summary

Jordan Benzing goes over the latest update releases including repeating vulnerability, Windows Remote Desktop Licensing Service Remove Code Execution. Bryan Dam then reviews hot topic articles over the last month including Polyfill supply chain attack, multiple WordPress Plugins ongoing supply-chain attack, TeamViewer Corporate IT compromised environment, and much more.

Watch the Webinar Recording

Webinar Hosts

Bryan Dam

Bryan Dam

Patch My PC
Software Engineer

Bryan Dam

Jordan Benzing

Patch My PC
Security Engineer Lead

Patch Tuesday Support Group Webinar Recap

Patch Tuesday July News

Possible Update Issuessupport.microsoft.com

The KB5036980 breaks the Windows 11 Enterprise Subscription Activationcall4cloud.nl

Car dealership outages drag on after CDK cyberattackstechcrunch.com

Polyfill supply chain attack hits 100K+ sitessansec.io

Toward greater transparency: Unveiling Cloud Service CVEsmsrc.microsoft.com

Backdoor slipped into multiple WordPress plugins in ongoing supply-chain attackarstechnica.com

TeamViewer Corporate IT environment is compromisedteamviewer.com

Google Chrome Drops Entrust/AffirmTrust as a Public Certificate Authoritysecurity.googleblog.com

regreSSHion: Remote Unauthenticated Code Execution Vulnerability in OpenSSH serverblog.qualys.com

‘RockYou2024’: Nearly 10 billion passwords leaked onlinemalwarebytes.com

Microsoft bans Android for its China staff, mandates iPhones for workandroidauthority.com

Blast-RADIUS attack breaks 30-year-old protocolblastradius.fail

Onboarding modern with Autopilot: Magic trick revealedmsendpointmgr.com

Update Microsoft Edge during Windows Autopilot enrollmentsinthecloud247.com

Changes to Windows Installer with July CUs for Win10/11support.microsoft.com

Retirement of Office 365 connectors within Microsoft Teamsdevblogs.microsoft.com

Deprecation of WSUS driver synchronizationtechcommunity.microsoft.com

KB5034440: Windows Recovery Environment update for Windows 11, version 21H2: January 9, 2024support.microsoft.com

Microsoft Patches of Note

View the full list of Patch Tuesday release notes at Patch Tuesday Blog Home Page – Patch Tuesday Blog

Patches Released: 104
Critical Severity: 48
Important Severity: 48
Moderate Severity: 7
N/A Severity: 0

Third Party Updates from Patch My PC

Total Number of Updates: 2708
Critical: 92
Important: 2062
Moderate: 478
Low: 11
N/A: 65

Browser Patch Specifics
Chrome: 12 Patches
FireFox: 216 Patches (Across supported Languages)
Microsoft Edge: 18 Patches
Opera: 12 Patches

Insight into CVEs

Unique CVEs this Month: 143
Critical: 6
Important: 134
Moderate: 3
N/A: 0

CVE breakdown
14 Denial of Service
26 Elevation of Privilege
9 Information Disclosure
60 Remote Code Executions
24 Security Feature Bypasses
7 Spoofing Opportunities

Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability — CVE-2024-38076  Score 9.8

Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability — CVE-2024-38074  Score 9.8

Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability — CVE-2024-38077  Score 9.8

Windows Hyper-V Elevation of Privilege Vulnerability — CVE-2024-38080  Score 7.8

Our Customers Love Us

G2 Summer Leader
G2 Best Results
G2 Best Relationship
G2 Best Usability
G2 Best Support
G2 High Performer

Trusted by Over 6,850 Enterprises on Over 21.5 Million Endpoints

American Express - Patch My PC Customer
Adidas - Patch My PC Customer
NHL - Patch My PC Customer
Toyota - Patch My PC Customer
Mastercard - Patch My PC Customer
General Mills - Patch My PC Customer
Dominos Pizza - Patch My PC Customer
Gartner - Patch My PC Customer
Nasdaq - Patch My PC Customer
NOAA - Patch My PC Customer
Airbus - Patch My PC Customer
FireEye - Patch My PC Customer
Samsung Securities - Patch My PC Customer
Campbell Soup Company - Patch My PC Customer
iHeartMedia - Patch My PC Customer
Phillips 66 - Patch My PC Customer
Pacific Life - Patch My PC Customer
Hyatt Hotels - Patch My PC Customer
National Weather Service - Patch My PC Customer
Sunbelt Rentals - Patch My PC Customer
Subway - Patch My PC Customer
Lufthansa - Patch My PC Customer
Penn State - Patch My PC Customer
{

Since the day we implemented 3rd party app patching through Patch My PC, we have achieved a more controlled but mainly fast way to update our clients. Our previous packaging process always took at least 1-2 weeks before an updated version of an app was available for deployment.

Gerasimos Bartsas - Adidas
Gerasimos Bartsas
Manager Endpoint Security and Compliance
{

This is one of the most excellent support/product teams I worked with so far! I would say, you guys know very well your product when it comes to troubleshooting.

Patch My PC is an excellent tool to manage third party updates through SCCM. I’m completely satisfied.

Dinesh Tashildar - American Express
Dinesh Tashildar
Lead Technical Architect
{

I was trialing Patch Connect Plus and having issues. PCP’s support was poor, outsourced, and they did not help me solve my issue. I switched to a Patch My PC trial and was experiencing the same issue. Justin reached out to Microsoft in less than an hour on my behalf and had a resolution.

Alexander Guarino - Harvard Business Publishing
Alexander Guarino
Systems Engineer
{

This was the easiest product to implement that I have ever used. And working with your company is always a pleasure.

Kurt Levitan - Harvard University
Kurt Levitan
Technical Architect
{

It’s been awesome and has met our needs perfectly. For ideas, etc. support has been super responsive and made the product worth its weight in gold over other competitors!

Sean Huggins - Patch My PC Review
Sean Huggans
Systems Engineer
{

I have been using the catalog for a while now, and I must say that I’m impressed by the high quality of the updates and the richness of the catalog.

Kent Agerlund - CTGlobal
Kent Agerlund
Founder
{

The “Base Installations” feature alone was well worth the switch from Ivanti to PMPC. It saves us countless hours every month!

Martin Jäger - Kremsmüller Industrieanlagenbau KG
Martin Jäger
System Administrator
{

Our experience has been great! We used to use SCCM for Adobe and Java updates only, but now we are able to use it for all of our 3rd party software while still using SCCM. It has made our endpoints much more secure in an automatic way.

{

Wish all vendors were like you guys.

Hudson Advisors Review
Joe Cormane
{

Everyone I encounter @ PMPC is awesome! Great Team and Great Product!

Ben Whitmore - Borough Council
Ben Whitmore
Technical Architecture Manager