Skip to main content

2020-002: Critical Vulnerabilities for Microsoft Windows, Patch Urgently

If you or your organisation uses any of the affected products, the ACSC recommends that you apply the patches urgently.

What do I do?

The patches for these vulnerabilities are provided by Microsoft as part of the January 2020 Security updates released on 15 January 2020 (AEDT).

Further information

Microsoft Advisory – CVE-2020-0601 -

Microsoft Advisory – CVE-2020-0609 –

Microsoft Advisory – CVE-2020-0610 -

Microsoft Advisory – CVE-2020-0611 -

US-CERT Alert AA20-014A - Critical Vulnerabilities in Microsoft Windows Operating Systems -

NSA Cyber Security Advisory- Patch Critical Cryptographic Vulnerability in Microsoft Windows Clients and Servers -