Post Syndicated from Adam Bunn original https://blog.rapid7.com/2021/09/15/patch-tuesday-september-2021/

Microsoft has fixed a total of 60 vulnerabilities this month, including two publicly disclosed 0-days. Fortunately there are only a few issues rated critical this month with the vast majority of the remainder being rated important. Here’s three big things you can go patch right now.

MSHTML Remote Code Execution 0-day (CVE-2021-40444)

The hot topic this month is the most recent remote code execution 0-day vulnerability in MSHTML. When it was first discovered it was only being used in a limited number of attacks, however this quickly changed once instructions for exploiting the vulnerability were published online. This vulnerability was severe enough to warrant publishing patches for older operating systems including Windows 7, Windows Server 2008 R2, and Windows Server 2008. Now that updates have been published for this vulnerability they should be applied as soon as possible.

Windows DNS Local Elevation of Privilege (CVE-2021-36968)

This is the second publicly disclosed vulnerability updated this month. While the details surrounding this CVE are sparse, we do know that Microsoft has not detected exploitation in the wild.

Updates to PrintNightmare (CVE-2021-1678)

Microsoft has made additional patches available for older operating systems. If you were previously unable to patch against this vulnerability you may want to review this new information.

Summary Graphs

Summary Tables

Azure Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-38647	Open Management Infrastructure Remote Code Execution Vulnerability	No	No	9.8	Yes
CVE-2021-38645	Open Management Infrastructure Elevation of Privilege Vulnerability	No	No	7.8	Yes
CVE-2021-38648	Open Management Infrastructure Elevation of Privilege Vulnerability	No	No	7.8	Yes
CVE-2021-38649	Open Management Infrastructure Elevation of Privilege Vulnerability	No	No	7	Yes
CVE-2021-40448	Microsoft Accessibility Insights for Android Information Disclosure Vulnerability	No	No	6.3	Yes
CVE-2021-36956	Azure Sphere Information Disclosure Vulnerability	No	No	4.4	Yes

Browser Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-38642	Microsoft Edge for iOS Spoofing Vulnerability	No	No	6.1	No
CVE-2021-38641	Microsoft Edge for Android Spoofing Vulnerability	No	No	6.1	No
CVE-2021-26439	Microsoft Edge for Android Information Disclosure Vulnerability	No	No	4.6	No
CVE-2021-38669	Microsoft Edge (Chromium-based) Tampering Vulnerability	No	No	6.4	Yes
CVE-2021-26436	Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability	No	No	6.1	No
CVE-2021-36930	Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability	No	No	5.3	No
CVE-2021-30632	Chromium: CVE-2021-30632 Out of bounds write in V8	No	No		Yes
CVE-2021-30624	Chromium: CVE-2021-30624 Use after free in Autofill	No	No		Yes
CVE-2021-30623	Chromium: CVE-2021-30623 Use after free in Bookmarks	No	No		Yes
CVE-2021-30622	Chromium: CVE-2021-30622 Use after free in WebApp Installs	No	No		Yes
CVE-2021-30621	Chromium: CVE-2021-30621 UI Spoofing in Autofill	No	No		Yes
CVE-2021-30620	Chromium: CVE-2021-30620 Insufficient policy enforcement in Blink	No	No		Yes
CVE-2021-30619	Chromium: CVE-2021-30619 UI Spoofing in Autofill	No	No		Yes
CVE-2021-30618	Chromium: CVE-2021-30618 Inappropriate implementation in DevTools	No	No		Yes
CVE-2021-30617	Chromium: CVE-2021-30617 Policy bypass in Blink	No	No		Yes
CVE-2021-30616	Chromium: CVE-2021-30616 Use after free in Media	No	No		Yes
CVE-2021-30615	Chromium: CVE-2021-30615 Cross-origin data leak in Navigation	No	No		Yes
CVE-2021-30614	Chromium: CVE-2021-30614 Heap buffer overflow in TabStrip	No	No		Yes
CVE-2021-30613	Chromium: CVE-2021-30613 Use after free in Base internals	No	No		Yes
CVE-2021-30612	Chromium: CVE-2021-30612 Use after free in WebRTC	No	No		Yes
CVE-2021-30611	Chromium: CVE-2021-30611 Use after free in WebRTC	No	No		Yes
CVE-2021-30610	Chromium: CVE-2021-30610 Use after free in Extensions API	No	No		Yes
CVE-2021-30609	Chromium: CVE-2021-30609 Use after free in Sign-In	No	No		Yes
CVE-2021-30608	Chromium: CVE-2021-30608 Use after free in Web Share	No	No		Yes
CVE-2021-30607	Chromium: CVE-2021-30607 Use after free in Permissions	No	No		Yes
CVE-2021-30606	Chromium: CVE-2021-30606 Use after free in Blink	No	No		Yes

Developer Tools Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-36952	Visual Studio Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-26434	Visual Studio Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-26437	Visual Studio Code Spoofing Vulnerability	No	No	5.5	No

ESU Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-38625	Windows Kernel Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-38626	Windows Kernel Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-36968	Windows DNS Elevation of Privilege Vulnerability	No	Yes	7.8	No

Microsoft Dynamics Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-40440	Microsoft Dynamics Business Central Cross-site Scripting Vulnerability	No	No	5.4	No

Microsoft Office Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-38656	Microsoft Word Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-38651	Microsoft SharePoint Server Spoofing Vulnerability	No	No	7.6	No
CVE-2021-38652	Microsoft SharePoint Server Spoofing Vulnerability	No	No	7.6	No
CVE-2021-38653	Microsoft Office Visio Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-38654	Microsoft Office Visio Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-38650	Microsoft Office Spoofing Vulnerability	No	No	7.6	Yes
CVE-2021-38659	Microsoft Office Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-38658	Microsoft Office Graphics Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-38660	Microsoft Office Graphics Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-38657	Microsoft Office Graphics Component Information Disclosure Vulnerability	No	No	6.1	Yes
CVE-2021-38646	Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-38655	Microsoft Excel Remote Code Execution Vulnerability	No	No	7.8	Yes

Windows Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-36967	Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability	No	No	8	No
CVE-2021-36966	Windows Subsystem for Linux Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-38637	Windows Storage Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-36972	Windows SMB Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-36974	Windows SMB Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-36973	Windows Redirected Drive Buffering System Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-38624	Windows Key Storage Provider Security Feature Bypass Vulnerability	No	No	6.5	Yes
CVE-2021-36954	Windows Bind Filter Driver Elevation of Privilege Vulnerability	No	No	8.8	No
CVE-2021-36975	Win32k Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-38634	Microsoft Windows Update Client Elevation of Privilege Vulnerability	No	No	7.1	No
CVE-2021-38644	Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-38661	HEVC Video Extensions Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-38632	BitLocker Security Feature Bypass Vulnerability	No	No	5.7	Yes

Windows ESU Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-36965	Windows WLAN AutoConfig Service Remote Code Execution Vulnerability	No	No	8.8	No
CVE-2021-26435	Windows Scripting Engine Memory Corruption Vulnerability	No	No	8.1	Yes
CVE-2021-36960	Windows SMB Information Disclosure Vulnerability	No	No	7.5	Yes
CVE-2021-36969	Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-38635	Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-38636	Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-38667	Windows Print Spooler Elevation of Privilege Vulnerability	No	No	7.8	Yes
CVE-2021-38671	Windows Print Spooler Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-40447	Windows Print Spooler Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-36962	Windows Installer Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-36961	Windows Installer Denial of Service Vulnerability	No	No	5.5	No
CVE-2021-36964	Windows Event Tracing Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-38630	Windows Event Tracing Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-36955	Windows Common Log File System Driver Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-36963	Windows Common Log File System Driver Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-38633	Windows Common Log File System Driver Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-36959	Windows Authenticode Spoofing Vulnerability	No	No	5.5	No
CVE-2021-38629	Windows Ancillary Function Driver for WinSock Information Disclosure Vulnerability	No	No	6.5	Yes
CVE-2021-38628	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-38638	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-38639	Win32k Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-40444	Microsoft MSHTML Remote Code Execution Vulnerability	Yes	Yes	8.8	Yes

Post Syndicated from Adam Bunn original https://blog.rapid7.com/2021/08/11/patch-tuesday-august-2021/

Hot off the press, it’s another issue of the Patch Tuesday blog! While the number of vulnerabilities is low this month, there are a number of high risk items administrators will want to patch right away including a few that will require additional remediation steps. This Patch Tuesday also includes updates for three vulnerabilities that were publicly disclosed earlier this month. Let’s jump in.

Windows Elevation of Privilege Vulnerability aka HiveNightmare/SeriousSAM

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-36934
With a public proof-of-concept having been available for some time, administrators should prioritize taking action on CVE-2021-36934. Remediation for this vulnerability requires volume shadow copies for system files to be deleted. This is due to the nature of the vulnerability, as the files with the vulnerable permissions could be restored from a backup and accessed even after the patch is installed. Microsoft indicates they took caution not to delete users’ backups, but the trade-off is that customers will need to do the chore themselves. We’ve updated our blog post with this additional information.

Windows LSA Spoofing Vulnerability aka ADV210003

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-36942
Another high priority action for patching teams is CVE-2021-36942. This update patches one of the vectors used in the PetitPotam attack. After applying this update there are additional configurations required in order to protect systems from other attack vectors using registry keys. The InsightVM team has included detection for the registry keys needed to enable EPA and SMB Signing in addition to the normal update.  Please see our blog post for more information.

Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-26432
While Microsoft has not offered up any details for this vulnerability we can glean some info from the CVSS information. This remote code execution vulnerability is reachable from the network service with no authentication or user action required. There may not be an exploit available for this yet, but Microsoft indicates that “Exploitation [is] more likely”. Put this update near the top of your TODO list.

Windows TCP/IP Remote Code Execution Vulnerability

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-26424
Last on our list is a vulnerability that can result in remote execution on a Hyper-V host via the IPv6 networking stack. If Hyper-V is used in your environment this should be first on your list this month.

Summary Graphs

Summary Tables

Azure Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-36949	Microsoft Azure Active Directory Connect Authentication Bypass Vulnerability	No	No	7.1	Yes
CVE-2021-26428	Azure Sphere Information Disclosure Vulnerability	No	No	4.4	Yes
CVE-2021-26429	Azure Sphere Elevation of Privilege Vulnerability	No	No	7.7	Yes
CVE-2021-26430	Azure Sphere Denial of Service Vulnerability	No	No	6	Yes
CVE-2021-33762	Azure CycleCloud Elevation of Privilege Vulnerability	No	No	7	No
CVE-2021-36943	Azure CycleCloud Elevation of Privilege Vulnerability	No	No	4	No

Browser Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-30597	Chromium: CVE-2021-30597 Use after free in Browser UI	No	No		Yes
CVE-2021-30596	Chromium: CVE-2021-30596 Incorrect security UI in Navigation	No	No		Yes
CVE-2021-30594	Chromium: CVE-2021-30594 Use after free in Page Info UI	No	No		Yes
CVE-2021-30593	Chromium: CVE-2021-30593 Out of bounds read in Tab Strip	No	No		Yes
CVE-2021-30592	Chromium: CVE-2021-30592 Out of bounds write in Tab Groups	No	No		Yes
CVE-2021-30591	Chromium: CVE-2021-30591 Use after free in File System API	No	No		Yes
CVE-2021-30590	Chromium: CVE-2021-30590 Heap buffer overflow in Bookmarks	No	No		Yes

Developer Tools Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34532	ASP.NET Core and Visual Studio Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34485	.NET Core and Visual Studio Information Disclosure Vulnerability	No	No	5	Yes
CVE-2021-26423	.NET Core and Visual Studio Denial of Service Vulnerability	No	No	7.5	No

Microsoft Dynamics Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-36946	Microsoft Dynamics Business Central Cross-site Scripting Vulnerability	No	No	5.4	No
CVE-2021-34524	Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability	No	No	8.1	No
CVE-2021-36950	Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability	No	No	5.4	No

Microsoft Office Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-36941	Microsoft Word Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-36940	Microsoft SharePoint Server Spoofing Vulnerability	No	No	7.6	No
CVE-2021-34478	Microsoft Office Remote Code Execution Vulnerability	No	No	7.8	Yes

System Center Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34471	Microsoft Windows Defender Elevation of Privilege Vulnerability	No	No	7.8	Yes

Windows Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-26426	Windows User Account Profile Picture Elevation of Privilege Vulnerability	No	No	7	No
CVE-2021-36948	Windows Update Medic Service Elevation of Privilege Vulnerability	Yes	No	7.8	No
CVE-2021-26432	Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability	No	No	9.8	No
CVE-2021-26433	Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability	No	No	7.5	Yes
CVE-2021-36926	Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability	No	No	7.5	Yes
CVE-2021-36932	Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability	No	No	7.5	Yes
CVE-2021-36933	Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability	No	No	7.5	Yes
CVE-2021-26431	Windows Recovery Environment Agent Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34534	Windows MSHTML Platform Remote Code Execution Vulnerability	No	No	6.8	Yes
CVE-2021-34530	Windows Graphics Component Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34486	Windows Event Tracing Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34487	Windows Event Tracing Elevation of Privilege Vulnerability	No	No	7	No
CVE-2021-36938	Windows Cryptographic Primitives Library Information Disclosure Vulnerability	No	No	5.5	No
CVE-2021-36945	Windows 10 Update Assistant Elevation of Privilege Vulnerability	No	No	7.3	No
CVE-2021-34536	Storage Spaces Controller Elevation of Privilege Vulnerability	No	No	7.8	No

Windows ESU Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34484	Windows User Profile Service Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-26424	Windows TCP/IP Remote Code Execution Vulnerability	No	No	9.9	Yes
CVE-2021-36936	Windows Print Spooler Remote Code Execution Vulnerability	No	Yes	8.8	No
CVE-2021-36947	Windows Print Spooler Remote Code Execution Vulnerability	No	No	8.8	No
CVE-2021-34483	Windows Print Spooler Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-36937	Windows Media MPEG-4 Video Decoder Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-36942	Windows LSA Spoofing Vulnerability	No	Yes	7.5	Yes
CVE-2021-34533	Windows Graphics Component Font Parsing Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-26425	Windows Event Tracing Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-36927	Windows Digital TV Tuner device registration application Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34537	Windows Bluetooth Driver Elevation of Privilege Vulnerability	No	No	7.8	Yes
CVE-2021-34480	Scripting Engine Memory Corruption Vulnerability	No	No	6.8	Yes
CVE-2021-34535	Remote Desktop Client Remote Code Execution Vulnerability	No	No	8.8	Yes

Post Syndicated from Adam Bunn original https://blog.rapid7.com/2021/07/13/patch-tuesday-july-2021/

Microsoft has patched another 117 CVEs, returning to volumes seen in early 2021 and most of 2020. It would appear that the recent trend of approximately 50 vulnerability fixes per month was not indicative of a slowing pace. This month there were 13 vulnerabilities rated Critical with nearly the rest being rated Important. Thankfully, none of the updates published today require additional steps to remediate, so administrators should be able to rely on their normal patching process. Once CVE-2021-34527 has been remediated, priority should be to patch public facing DNS and Exchange servers, followed by Workstations, SharePoint servers, and finally Office applications.

It seems like the PrintNightmare is nearly over. While the past two weeks have been a frenzy for the security community there has been no new information since the end of last week when Microsoft made a final revision to their guidance on CVE-2021-34527. If you haven’t patched this yet, this is your daily reminder. For further details please see our blog on the topic.

Multiple Critical DNS Vulnerabilities Patched

Administrators should focus their efforts on the 11 vulnerabilities in Windows DNS server to reduce the most risk. The two most important of these vulnerabilities are CVE-2021-34494 and CVE-2021-33780. Exploitation of either of these vulnerabilities would result in Remote Code Execution with SYSTEM privileges without any user interaction via the network. Given the network exposure of DNS servers these vulnerabilities could prove to be troublesome if an exploit were to be developed. Microsoft lists CVE-2021-33780 as “Exploitation More Likely” so it may only be a matter of time before attackers attempt to make use of these flaws.

New Exchange Updates Available

Only 4 of the 7 Exchange CVEs being disclosed this month are new. The two most severe vulnerabilities were patched in back in April and were mistakenly not disclosed. This means that if you applied the April 2021 updates you will not need to take any action for CVE-2021-34473, CVE-2021-34523, or CVE-2021-33766. Of the 4 newly patched vulnerabilities the most notable is CVE-2021-31206, a remote code execution flaw discovered in the recent Pwn2Own competition.

Scripting Engine Exploited in the Wild

Exploitation of CVE-2021-34448 has been observed in the wild by researchers. There are no details on the frequency or spread of this exploit. This vulnerability requires the user to visit a link to download a malicious file. As with other vulnerabilities that require user interaction, strong security hygiene is the first line of defense.

Summary Tables

Here are this month’s patched vulnerabilities split by the product family.

Apps Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-33753	Microsoft Bing Search Spoofing Vulnerability	No	No	4.7	Yes

Developer Tools Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34528	Visual Studio Code Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34529	Visual Studio Code Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34477	Visual Studio Code .NET Runtime Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33767	Open Enclave SDK Elevation of Privilege Vulnerability	No	No	8.2	Yes
CVE-2021-34479	Microsoft Visual Studio Spoofing Vulnerability	No	No	7.8	No

Exchange Server Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34473	Microsoft Exchange Server Remote Code Execution Vulnerability	No	Yes	9.1	No
CVE-2021-31206	Microsoft Exchange Server Remote Code Execution Vulnerability	No	No	7.6	Yes
CVE-2021-31196	Microsoft Exchange Server Remote Code Execution Vulnerability	No	No	7.2	No
CVE-2021-34523	Microsoft Exchange Server Elevation of Privilege Vulnerability	No	Yes	9	No
CVE-2021-33768	Microsoft Exchange Server Elevation of Privilege Vulnerability	No	No	8	Yes
CVE-2021-34470	Microsoft Exchange Server Elevation of Privilege Vulnerability	No	No	8	Yes
CVE-2021-33766	Microsoft Exchange Information Disclosure Vulnerability	No	No	7.3	Yes

Microsoft Dynamics Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34474	Dynamics Business Central Remote Code Execution Vulnerability	No	No	8	Yes

Microsoft Office Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34452	Microsoft Word Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34517	Microsoft SharePoint Server Spoofing Vulnerability	No	No	5.3	No
CVE-2021-34520	Microsoft SharePoint Server Remote Code Execution Vulnerability	No	No	8.1	No
CVE-2021-34467	Microsoft SharePoint Server Remote Code Execution Vulnerability	No	No	7.1	No
CVE-2021-34468	Microsoft SharePoint Server Remote Code Execution Vulnerability	No	No	7.1	Yes
CVE-2021-34519	Microsoft SharePoint Server Information Disclosure Vulnerability	No	No	5.3	Yes
CVE-2021-34469	Microsoft Office Security Feature Bypass Vulnerability	No	No	8.2	Yes
CVE-2021-34451	Microsoft Office Online Server Spoofing Vulnerability	No	No	5.3	Yes
CVE-2021-34501	Microsoft Excel Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34518	Microsoft Excel Remote Code Execution Vulnerability	No	No	7.8	Yes

SQL Server Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-31984	Power BI Remote Code Execution Vulnerability	No	No	7.6	Yes

System Center Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-34464	Microsoft Defender Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34522	Microsoft Defender Remote Code Execution Vulnerability	No	No	7.8	Yes

Windows Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-33772	Windows TCP/IP Driver Denial of Service Vulnerability	No	No	7.5	No
CVE-2021-34490	Windows TCP/IP Driver Denial of Service Vulnerability	No	No	7.5	No
CVE-2021-33744	Windows Secure Kernel Mode Security Feature Bypass Vulnerability	No	No	5.3	No
CVE-2021-33763	Windows Remote Access Connection Manager Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34454	Windows Remote Access Connection Manager Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-33761	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33773	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34445	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33743	Windows Projected File System Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34493	Windows Partition Management Driver Elevation of Privilege Vulnerability	No	No	6.7	No
CVE-2021-33740	Windows Media Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34458	Windows Kernel Remote Code Execution Vulnerability	No	No	9.9	Yes
CVE-2021-34508	Windows Kernel Remote Code Execution Vulnerability	No	No	8.8	No
CVE-2021-33771	Windows Kernel Elevation of Privilege Vulnerability	Yes	No	7.8	No
CVE-2021-31961	Windows InstallService Elevation of Privilege Vulnerability	No	No	6.1	Yes
CVE-2021-34450	Windows Hyper-V Remote Code Execution Vulnerability	No	No	8.5	Yes
CVE-2021-33758	Windows Hyper-V Denial of Service Vulnerability	No	No	7.7	No
CVE-2021-33755	Windows Hyper-V Denial of Service Vulnerability	No	No	6.3	No
CVE-2021-34466	Windows Hello Security Feature Bypass Vulnerability	No	No	5.7	Yes
CVE-2021-34438	Windows Font Driver Host Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34455	Windows File History Service Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33774	Windows Event Tracing Elevation of Privilege Vulnerability	No	No	7	No
CVE-2021-33759	Windows Desktop Bridge Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34525	Windows DNS Server Remote Code Execution Vulnerability	No	No	8.8	No
CVE-2021-34461	Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34488	Windows Console Driver Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33784	Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34462	Windows AppX Deployment Extensions Elevation of Privilege Vulnerability	No	No	7	No
CVE-2021-34459	Windows AppContainer Elevation Of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33785	Windows AF_UNIX Socket Provider Denial of Service Vulnerability	No	No	7.5	No
CVE-2021-33779	Windows ADFS Security Feature Bypass Vulnerability	No	Yes	8.1	Yes
CVE-2021-34491	Win32k Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34449	Win32k Elevation of Privilege Vulnerability	No	No	7	No
CVE-2021-34509	Storage Spaces Controller Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34460	Storage Spaces Controller Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34510	Storage Spaces Controller Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34512	Storage Spaces Controller Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34513	Storage Spaces Controller Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33751	Storage Spaces Controller Elevation of Privilege Vulnerability	No	No	7	No
CVE-2021-34521	Raw Image Extension Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34439	Microsoft Windows Media Foundation Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34503	Microsoft Windows Media Foundation Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-33760	Media Foundation Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-31947	HEVC Video Extensions Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-33775	HEVC Video Extensions Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-33776	HEVC Video Extensions Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-33777	HEVC Video Extensions Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-33778	HEVC Video Extensions Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-34489	DirectWrite Remote Code Execution Vulnerability	No	No	7.8	Yes
CVE-2021-33781	Active Directory Security Feature Bypass Vulnerability	No	Yes	8.1	No

Windows ESU Vulnerabilities

CVE	Title	Exploited	Disclosed	CVSS3	FAQ
CVE-2021-31183	Windows TCP/IP Driver Denial of Service Vulnerability	No	No	7.5	No
CVE-2021-33757	Windows Security Account Manager Remote Protocol Security Feature Bypass Vulnerability	No	No	5.3	Yes
CVE-2021-33783	Windows SMB Information Disclosure Vulnerability	No	No	6.5	Yes
CVE-2021-34507	Windows Remote Assistance Information Disclosure Vulnerability	No	No	6.5	Yes
CVE-2021-34457	Windows Remote Access Connection Manager Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34456	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34527	Windows Print Spooler Remote Code Execution Vulnerability	Yes	Yes	8.8	Yes
CVE-2021-34497	Windows MSHTML Platform Remote Code Execution Vulnerability	No	No	6.8	Yes
CVE-2021-34447	Windows MSHTML Platform Remote Code Execution Vulnerability	No	No	6.8	Yes
CVE-2021-33786	Windows LSA Security Feature Bypass Vulnerability	No	No	8.1	Yes
CVE-2021-33788	Windows LSA Denial of Service Vulnerability	No	No	7.5	No
CVE-2021-33764	Windows Key Distribution Center Information Disclosure Vulnerability	No	No	5.9	Yes
CVE-2021-34500	Windows Kernel Memory Information Disclosure Vulnerability	No	No	6.3	Yes
CVE-2021-31979	Windows Kernel Elevation of Privilege Vulnerability	Yes	No	7.8	No
CVE-2021-34514	Windows Kernel Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33765	Windows Installer Spoofing Vulnerability	No	No	6.2	No
CVE-2021-34511	Windows Installer Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34446	Windows HTML Platforms Security Feature Bypass Vulnerability	No	No	8	No
CVE-2021-34496	Windows GDI Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34498	Windows GDI Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-33749	Windows DNS Snap-in Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-33750	Windows DNS Snap-in Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-33752	Windows DNS Snap-in Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-33756	Windows DNS Snap-in Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-34494	Windows DNS Server Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-33780	Windows DNS Server Remote Code Execution Vulnerability	No	No	8.8	Yes
CVE-2021-33746	Windows DNS Server Remote Code Execution Vulnerability	No	No	8	No
CVE-2021-33754	Windows DNS Server Remote Code Execution Vulnerability	No	No	8	No
CVE-2021-34442	Windows DNS Server Denial of Service Vulnerability	No	No	7.5	Yes
CVE-2021-34444	Windows DNS Server Denial of Service Vulnerability	No	No	6.5	Yes
CVE-2021-34499	Windows DNS Server Denial of Service Vulnerability	No	No	6.5	No
CVE-2021-33745	Windows DNS Server Denial of Service Vulnerability	No	No	6.5	Yes
CVE-2021-34492	Windows Certificate Spoofing Vulnerability	No	Yes	8.1	No
CVE-2021-33782	Windows Authenticode Spoofing Vulnerability	No	No	5.5	No
CVE-2021-34504	Windows Address Book Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34516	Win32k Elevation of Privilege Vulnerability	No	No	7.8	No
CVE-2021-34448	Scripting Engine Memory Corruption Vulnerability	Yes	No	6.8	Yes
CVE-2021-34441	Microsoft Windows Media Foundation Remote Code Execution Vulnerability	No	No	7.8	No
CVE-2021-34440	GDI+ Information Disclosure Vulnerability	No	No	5.5	Yes
CVE-2021-34476	Bowser.sys Denial of Service Vulnerability	No	No	7.5	No

Summary Graphs