Post Syndicated from Adam Bunn original https://blog.rapid7.com/2021/07/13/patch-tuesday-july-2021/

Microsoft has patched another 117 CVEs, returning to volumes seen in early 2021 and most of 2020. It would appear that the recent trend of approximately 50 vulnerability fixes per month was not indicative of a slowing pace. This month there were 13 vulnerabilities rated Critical with nearly the rest being rated Important. Thankfully, none of the updates published today require additional steps to remediate, so administrators should be able to rely on their normal patching process. Once CVE-2021-34527 has been remediated, priority should be to patch public facing DNS and Exchange servers, followed by Workstations, SharePoint servers, and finally Office applications.

It seems like the PrintNightmare is nearly over. While the past two weeks have been a frenzy for the security community there has been no new information since the end of last week when Microsoft made a final revision to their guidance on CVE-2021-34527. If you haven’t patched this yet, this is your daily reminder. For further details please see our blog on the topic.

Multiple Critical DNS Vulnerabilities Patched

Administrators should focus their efforts on the 11 vulnerabilities in Windows DNS server to reduce the most risk. The two most important of these vulnerabilities are CVE-2021-34494 and CVE-2021-33780. Exploitation of either of these vulnerabilities would result in Remote Code Execution with SYSTEM privileges without any user interaction via the network. Given the network exposure of DNS servers these vulnerabilities could prove to be troublesome if an exploit were to be developed. Microsoft lists CVE-2021-33780 as “Exploitation More Likely” so it may only be a matter of time before attackers attempt to make use of these flaws.

New Exchange Updates Available

Only 4 of the 7 Exchange CVEs being disclosed this month are new. The two most severe vulnerabilities were patched in back in April and were mistakenly not disclosed. This means that if you applied the April 2021 updates you will not need to take any action for CVE-2021-34473, CVE-2021-34523, or CVE-2021-33766. Of the 4 newly patched vulnerabilities the most notable is CVE-2021-31206, a remote code execution flaw discovered in the recent Pwn2Own competition.

Scripting Engine Exploited in the Wild

Exploitation of CVE-2021-34448 has been observed in the wild by researchers. There are no details on the frequency or spread of this exploit. This vulnerability requires the user to visit a link to download a malicious file. As with other vulnerabilities that require user interaction, strong security hygiene is the first line of defense.

Summary Tables

Here are this month’s patched vulnerabilities split by the product family.

Apps Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-33753	Microsoft Bing Search Spoofing Vulnerability	No	No	4.7	Yes

Developer Tools Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34528	Visual Studio Code Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34529	Visual Studio Code Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34477	Visual Studio Code .NET Runtime Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33767	Open Enclave SDK Elevation of Privilege Vulnerability	No	No	8.2	Yes
CVE-2021-34479	Microsoft Visual Studio Spoofing Vulnerability	No	No	7.8	No

Exchange Server Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34473	Microsoft Exchange Server Remote Code Execution Vulnerability	No	Yes	9.1	No
CVE-2021-31206	Microsoft Exchange Server Remote Code Execution Vulnerability	No	No	7.6	Yes
CVE-2021-31196	Microsoft Exchange Server Remote Code Execution Vulnerability	No	No	7.2	No
CVE-2021-34523	Microsoft Exchange Server Elevation of Privilege Vulnerability	No	Yes	9	No
CVE-2021-33768	Microsoft Exchange Server Elevation of Privilege Vulnerability	No	No	8	Yes
CVE-2021-34470	Microsoft Exchange Server Elevation of Privilege Vulnerability	No	No	8	Yes
CVE-2021-33766	Microsoft Exchange Information Disclosure Vulnerability	No	No	7.3	Yes

Microsoft Dynamics Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34474	Dynamics Business Central Remote Code Execution Vulnerability	No	No	8	Yes

Microsoft Office Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34452	Microsoft Word Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34517	Microsoft SharePoint Server Spoofing Vulnerability	No	No	5.3	No
CVE-2021-34520	Microsoft SharePoint Server Remote Code Execution Vulnerability	No	No	8.1	No
CVE-2021-34467	Microsoft SharePoint Server Remote Code Execution Vulnerability	No	No	7.1	No
CVE-2021-34468	Microsoft SharePoint Server Remote Code Execution Vulnerability	No	No	7.1	Yes
CVE-2021-34519	Microsoft SharePoint Server Information Disclosure Vulnerability	No	No	5.3	Yes
CVE-2021-34469	Microsoft Office Security Feature Bypass Vulnerability	No	No	8.2	Yes
CVE-2021-34451	Microsoft Office Online Server Spoofing Vulnerability	No	No	5.3	Yes
CVE-2021-34501	Microsoft Excel Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34518	Microsoft Excel Remote Code Execution Vulnerability	No	No	7.8	Yes

SQL Server Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-31984	Power BI Remote Code Execution Vulnerability	No	No	7.6	Yes

System Center Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34464	Microsoft Defender Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34522	Microsoft Defender Remote Code Execution Vulnerability	No	No	7.8	Yes

Windows Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-33772	Windows TCP/IP Driver Denial of Service Vulnerability	No	No	7.5	No
CVE-2021-34490	Windows TCP/IP Driver Denial of Service Vulnerability	No	No	7.5	No
CVE-2021-33744	Windows Secure Kernel Mode Security Feature Bypass Vulnerability	No	No	5.3	No
CVE-2021-33763	Windows Remote Access Connection Manager Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34454	Windows Remote Access Connection Manager Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-33761	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33773	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34445	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33743	Windows Projected File System Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34493	Windows Partition Management Driver Elevation of Privilege Vulnerability	No	No	6.7	No
CVE-2021-33740	Windows Media Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34458	Windows Kernel Remote Code Execution Vulnerability	No	No	9.9	Yes
CVE-2021-34508	Windows Kernel Remote Code Execution Vulnerability	No	No	8.8	No
CVE-2021-33771	Windows Kernel Elevation of Privilege Vulnerability	Yes	No	7.8	No
CVE-2021-31961	Windows InstallService Elevation of Privilege Vulnerability	No	No	6.1	Yes
CVE-2021-34450	Windows Hyper-V Remote Code Execution Vulnerability	No	No	8.5	Yes
CVE-2021-33758	Windows Hyper-V Denial of Service Vulnerability	No	No	7.7	No
CVE-2021-33755	Windows Hyper-V Denial of Service Vulnerability	No	No	6.3	No
CVE-2021-34466	Windows Hello Security Feature Bypass Vulnerability	No	No	5.7	Yes
CVE-2021-34438	Windows Font Driver Host Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34455	Windows File History Service Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33774	Windows Event Tracing Elevation of Privilege Vulnerability	No	No	7	No
CVE-2021-33759	Windows Desktop Bridge Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34525	Windows DNS Server Remote Code Execution Vulnerability	No	No	8.8	No
CVE-2021-34461	Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34488	Windows Console Driver Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33784	Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34462	Windows AppX Deployment Extensions Elevation of Privilege Vulnerability	No	No	7	No
CVE-2021-34459	Windows AppContainer Elevation Of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33785	Windows AF_UNIX Socket Provider Denial of Service Vulnerability	No	No	7.5	No
CVE-2021-33779	Windows ADFS Security Feature Bypass Vulnerability	No	Yes	8.1	Yes
CVE-2021-34491	Win32k Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34449	Win32k Elevation of Privilege Vulnerability	No	No	7	No
CVE-2021-34509	Storage Spaces Controller Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34460	Storage Spaces Controller Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34510	Storage Spaces Controller Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34512	Storage Spaces Controller Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34513	Storage Spaces Controller Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33751	Storage Spaces Controller Elevation of Privilege Vulnerability	No	No	7	No
CVE-2021-34521	Raw Image Extension Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34439	Microsoft Windows Media Foundation Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34503	Microsoft Windows Media Foundation Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-33760	Media Foundation Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-31947	HEVC Video Extensions Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-33775	HEVC Video Extensions Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-33776	HEVC Video Extensions Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-33777	HEVC Video Extensions Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-33778	HEVC Video Extensions Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34489	DirectWrite Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-33781	Active Directory Security Feature Bypass Vulnerability	No	Yes	8.1	No

Windows ESU Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-31183	Windows TCP/IP Driver Denial of Service Vulnerability	No	No	7.5	No
CVE-2021-33757	Windows Security Account Manager Remote Protocol Security Feature Bypass Vulnerability	No	No	5.3	Yes
CVE-2021-33783	Windows SMB Information Disclosure Vulnerability	No	No	6.5	Yes
CVE-2021-34507	Windows Remote Assistance Information Disclosure Vulnerability	No	No	6.5	Yes
CVE-2021-34457	Windows Remote Access Connection Manager Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34456	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34527	Windows Print Spooler Remote Code Execution Vulnerability	Yes	Yes	8.8	Yes
CVE-2021-34497	Windows MSHTML Platform Remote Code Execution Vulnerability	No	No	6.8	Yes
CVE-2021-34447	Windows MSHTML Platform Remote Code Execution Vulnerability	No	No	6.8	Yes
CVE-2021-33786	Windows LSA Security Feature Bypass Vulnerability	No	No	8.1	Yes
CVE-2021-33788	Windows LSA Denial of Service Vulnerability	No	No	7.5	No
CVE-2021-33764	Windows Key Distribution Center Information Disclosure Vulnerability	No	No	5.9	Yes
CVE-2021-34500	Windows Kernel Memory Information Disclosure Vulnerability	No	No	6.3	Yes
CVE-2021-31979	Windows Kernel Elevation of Privilege Vulnerability	Yes	No	7.8	No
CVE-2021-34514	Windows Kernel Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33765	Windows Installer Spoofing Vulnerability	No	No	6.2	No
CVE-2021-34511	Windows Installer Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34446	Windows HTML Platforms Security Feature Bypass Vulnerability	No	No	8	No
CVE-2021-34496	Windows GDI Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34498	Windows GDI Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33749	Windows DNS Snap-in Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-33750	Windows DNS Snap-in Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-33752	Windows DNS Snap-in Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-33756	Windows DNS Snap-in Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-34494	Windows DNS Server Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-33780	Windows DNS Server Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-33746	Windows DNS Server Remote Code Execution Vulnerability	No	No	8	No
CVE-2021-33754	Windows DNS Server Remote Code Execution Vulnerability	No	No	8	No
CVE-2021-34442	Windows DNS Server Denial of Service Vulnerability	No	No	7.5	Yes
CVE-2021-34444	Windows DNS Server Denial of Service Vulnerability	No	No	6.5	Yes
CVE-2021-34499	Windows DNS Server Denial of Service Vulnerability	No	No	6.5	No
CVE-2021-33745	Windows DNS Server Denial of Service Vulnerability	No	No	6.5	Yes
CVE-2021-34492	Windows Certificate Spoofing Vulnerability	No	Yes	8.1	No
CVE-2021-33782	Windows Authenticode Spoofing Vulnerability	No	No	5.5	No
CVE-2021-34504	Windows Address Book Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34516	Win32k Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34448	Scripting Engine Memory Corruption Vulnerability	Yes	No	6.8	Yes
CVE-2021-34441	Microsoft Windows Media Foundation Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34440	GDI+ Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34476	Bowser.sys Denial of Service Vulnerability	No	No	7.5	No

Summary Graphs