Microsoft today released its monthly security updates, also known as Patches Tuesday. This month, the company fixed 56 security vulnerabilities along with a zero-day.
Το zero-day θα το βρείτε στο CVE-2021-1732, και αφορά ένα σφάλμα στο Win32k, ένα βασικό στοιχείο του λειτουργικού συστήματος των Windows.
The zero-day has already been exploited for attacks on Windows systems to obtain access at system level.
Of course, no details were revealed about these attacks.
Aside from the zero-day, this month's Patch Tuesday also stands out due to the large number of vulnerabilities it fixes.
The six bugs in Microsoft products have already been posted online before today's updates:
- CVE-2021-1721 - .NET Core and Visual Studio Denial of Service Vulnerability
- CVE-2021-1733 - Sysinternals PsExec Elevation of Privilege Vulnerability
- CVE-2021-26701 - .NET Core Remote Code Execution Vulnerability
- CVE-2021-1727 - Windows Installer Elevation of Privilege Vulnerability
- CVE-2021-24098 – Windows Console driver Denial of Service Vulnerability
- CVE-2021-24106 - Windows DirectX Information Disclosure Vulnerability
The good news is that none of the above errors have been exploited.
You can see all the security updates from the official Security Update Guide portal of Microsoft.
