Microsoft has released fixes for 49 vulnerabilities in January 2020 security updates. One of the ‘Critical’ vulnerabilities fixed today was discovered by the NSA and could allow attackers to spoof digital certificates or perform man-in-the-middle (MiTM) attacks. The good news is that there were no vulnerabilities publicly disclosed or found being actively exploited in the wild. The January 2020 Patch Tuesday also fixes three vulnerabilities in the Windows Remote Desktop Gateway (RD Gateway) Vulnerability is pre-authentication and requires no user interaction.
Source: https://www.bleepingcomputer.com/news/microsoft/microsofts-january-2020-patch-tuesday-fixes-49-vulnerabilities/