Microsoft Monthly Security Update (January 2022)
Last Update Date:
19 Jan 2022
Release Date:
12 Jan 2022
4226
Views
RISK: High Risk
TYPE: Operating Systems - Windows OS
Microsoft has released monthly security update for their products:
| Vulnerable Product | Risk Level | Impacts | Notes |
| Windows |  High Risk | Elevation of Privilege Remote Code Execution Denial of Service Information Disclosure Spoofing Security Restriction Bypass |
|
| Extended Security Updates (ESU) |  Medium Risk | Elevation of Privilege Information Disclosure Spoofing Denial of Service Remote Code Execution Security Restriction Bypass | |
| Microsoft Dynamics |  Low Risk | Spoofing | |
| Microsoft Office | Medium Risk | Remote Code Execution | |
| Developer Tools | Medium Risk | Denial of Service | |
| Exchange Server | Medium Risk | Remote Code Execution | |
| Browser | Medium Risk | Remote Code Execution Elevation of Privilege |
Number of 'Extremely High Risk' product(s): 0
Number of 'High Risk' product(s): 1
Number of 'Medium Risk' product(s): 5
Number of 'Low Risk' product(s): 1
Evaluation of overall 'Risk Level': High Risk
[Updated on 2022-01-19]
- Proof of concept exploit code is publicly available for CVE-2022-21907, 'Risk Level' has been raised to High Risk.
Impact
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Spoofing
System / Technologies affected
- Windows
- Extended Security Updates (ESU)
- Microsoft Dynamics
- Microsoft Office
- Developer Tools
- Exchange Server
- Browser
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor.
Vulnerability Identifier
Source
Related Link
Related Tags
Share with