It doesn&t always take the drama of a zero-day vulnerability like we saw in September to get our attention.
Make no mistake: This is still a really big update for the Windows platform.
Two vulnerabilities deserve our attention.
The first (CVE-2019-1429) relates to a vulnerability in the Microsoft Script Engine which has been reported as publicly exploited.
And the second, (CVE-2019-1457) is a publicly reported exploit in Microsoft Excel.
We also think that the critical update to Exchange Server (CVE-2019-1373) will require immediate attention.