Vulnerabilities Details

  • Home
  • Vulnerabilities Details

ZMC-2021.11.9.0800

Microsoft Windows: Multiple vulnerabilities

Operating System:

[WIN][UNIX/LINUX]

Published:

9th November 2021

VulnerabilitiesZMC-2021.11.9.0800 


=========================================================================== 
                         ZMCIRT Vulnerability Bulletin

                             ZMC-2021.11.9.0800
                       Microsoft Windows: Multiple vulnerabilities
                               9th November 2021

===========================================================================



Product:          Microsoft Windows
Operating System: Windows
Impact/Access:    Execute Arbitrary Code/Commands -- Remote with User Interaction
                  Increased Privileges            -- Existing Account            
                  Denial of Service               -- Remote/Unauthenticated      
                  Access Confidential Data        -- Remote with User Interaction
                  Unauthorised Access             -- Console/Physical            
Resolution:       Patch/Upgrade
CVE Names:        CVE-2021-42291 CVE-2021-42288 CVE-2021-42287
                  CVE-2021-42286 CVE-2021-42285 CVE-2021-42284
                  CVE-2021-42283 CVE-2021-42282 CVE-2021-42280
                  CVE-2021-42279 CVE-2021-42278 CVE-2021-42277
                  CVE-2021-42276 CVE-2021-42275 CVE-2021-42274
                  CVE-2021-41379 CVE-2021-41378 CVE-2021-41377
                  CVE-2021-41371 CVE-2021-41370 CVE-2021-41367
                  CVE-2021-41366 CVE-2021-41356 CVE-2021-38666
                  CVE-2021-38665 CVE-2021-38631 CVE-2021-36957
                  CVE-2021-26443  

OVERVIEW

        Microsoft has released its monthly security patch update for the
        month of November 2021.
        
        This update resolves 28 vulnerabilities across the following
        products: [1]
        
         Remote Desktop client
         Windows 10
         Windows 11
         Windows 8.1
         Windows RT 8.1
         Windows Server
         Windows Server 2012
         Windows Server 2012 R2
         Windows Server 2016
         Windows Server 2019
         Windows Server 2022


IMPACT

        Microsoft has given the following details regarding these vulnerabilities.
        
         Details         Impact                   Severity
         CVE-2021-26443  Remote Code Execution    Critical
         CVE-2021-36957  Elevation of Privilege   Important
         CVE-2021-38631  Information Disclosure   Important
         CVE-2021-38665  Information Disclosure   Important
         CVE-2021-38666  Remote Code Execution    Critical
         CVE-2021-41356  Denial of Service        Important
         CVE-2021-41366  Elevation of Privilege   Important
         CVE-2021-41367  Elevation of Privilege   Important
         CVE-2021-41370  Elevation of Privilege   Important
         CVE-2021-41371  Information Disclosure   Important
         CVE-2021-41377  Elevation of Privilege   Important
         CVE-2021-41378  Remote Code Execution    Important
         CVE-2021-41379  Elevation of Privilege   Important
         CVE-2021-42274  Denial of Service        Important
         CVE-2021-42275  Remote Code Execution    Important
         CVE-2021-42276  Remote Code Execution    Important
         CVE-2021-42277  Elevation of Privilege   Important
         CVE-2021-42278  Elevation of Privilege   Important
         CVE-2021-42279  Remote Code Execution    Critical
         CVE-2021-42280  Elevation of Privilege   Important
         CVE-2021-42282  Elevation of Privilege   Important
         CVE-2021-42283  Elevation of Privilege   Important
         CVE-2021-42284  Denial of Service        Important
         CVE-2021-42285  Elevation of Privilege   Important
         CVE-2021-42286  Elevation of Privilege   Important
         CVE-2021-42287  Elevation of Privilege   Important
         CVE-2021-42288  Security Feature Bypass  Important
         CVE-2021-42291  Elevation of Privilege   Important


MITIGATION

        Microsoft recommends updating the software with the version made
        available on the Microsoft Update Catalogue for the following
        Knowledge Base articles. [1].
        
         KB5007186, KB5007189, KB5007192, KB5007205, KB5007206
         KB5007207, KB5007215, KB5007245, KB5007247, KB5007255
         KB5007260


REFERENCES

        [1] Microsoft Security Update Guidance
            https://portal.msrc.microsoft.com/en-us/security-guidance


- --------------------------END INCLUDED TEXT--------------------





 
ZMCIRT has made every effort to ensure that the information contained
in this document is accurate.  However, the decision to use the information
described is the responsibility of each user or organisation. The decision to
follow or act on information or advice contained in this security bulletin is
the responsibility of each user or organisation, and should be considered in
accordance with your organisation's site policies and procedures. ZMCERT
takes no responsibility for consequences which may arise from following or
acting on information or advice contained in this security bulletin.

===========================================================================
Internet Email: report@cirt.zm     
Telephone:     7070 
                ZMCIRT personnel answer during Zambian business hours 
                which are 8am to 5pm.
                On call after hours for member emergencies only.
===========================================================================

Copyright @2023 ZAMBIA CIRT