Microsoft has addressed critical remote code execution vulnerabilities in multiple SharePoint versions with this month’s Office security updates. This month the company released 23 security updates and 5 cumulative updates for 7 different products, fixing 9 vulnerabilities that could allow attackers to execute arbitrary code remotely on vulnerable systems. Microsoft also issued the December 2020 Patch Tuesday security updates, with security updates for 58 vulnerabilities, nine of them rated as Critical. The company also released non-security Windows updates with the Windows 10 KB4592449 and cumulative updates.
Source: https://www.bleepingcomputer.com/news/security/microsoft-office-security-updates-fix-critical-sharepoint-rce-bugs/