Professional Documents
Culture Documents
Microsoft has started rolling out earlier today its monthly set of security patches known in the
industry as Patch Tuesday.
In this month's updates, the Redmond-based company has patched a total of 83 vulnerabilities
across a wide range of products, including its Windows operating system, cloud-based products,
developer tools, and enterprise servers.
Tracked as CVE-2021-1647, the vulnerability was described as a remote code execution (RCE) bug
that allowed threat actors to execute code on vulnerable devices where Defender is installed.
Microsoft said that despite exploitation being detected in the wild, the technique is not functional in
all situations, and is still considered to be at a proof-of-concept level. However, the code could
evolve for more reliable attacks.
To counteract future attacks, Microsoft has released patches for the Microsoft Malware Protection
Engine, which won't require any user interaction and will be installed automatically -- unless
specifically blocked by system administrators.
Nonetheless, system administrators are advised to revise and apply today's patches and avoid future
headaches in case any of these vulnerabilities get weaponized and added to attackers' arsenals.
Below are additional details about today's Microsoft Patch Tuesday and security updates released by
other tech companies:
Microsoft's official Security Update Guide portal lists all security updates in a filterable table.
ZDNet has published this file listing all this month's security advisories on one single page.
Adobe's security updates are detailed here.
SAP security updates are available here.
Intel security updates are available here.
VMWare security updates are available here.
Chrome 87 security updates are detailed here.
Android security updates are available here.