Skip to main content

Microsoft Monthly Security Update (October 2021)

Release Date: 15 Oct 2021 2141 Views

RISK: High Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS

Microsoft has released monthly security update for their products:

 

Vulnerable ProductRisk LevelImpactsNotes
Exchange ServerMedium Risk Medium RiskDenial of Service
Elevation of Privilege
Spoofing
Remote Code Execution
 
WindowsHigh Risk High RiskDenial of Service
Spoofing
Elevation of Privilege
Information Disclosure
Security Restriction Bypass
Remote Code Execution

Exploit in the wild

CVE-2021-40449

Extended Security Updates (ESU)High Risk High RiskDenial of Service
Spoofing
Elevation of Privilege
Information Disclosure
Security Restriction Bypass
Remote Code Execution

Exploit in the wild

CVE-2021-40449

Microsoft OfficeMedium Risk Medium RiskInformation Disclosure
Remote Code Execution
Spoofing
 
Microsoft DynamicsLow Risk Low RiskSpoofing 
Developer ToolsMedium Risk Medium RiskInformation Disclosure
Denial of Service
 
System CenterMedium Risk Medium RiskInformation Disclosure 
AppsMedium Risk Medium RiskSecurity Restriction Bypass 

 

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 2

Number of 'Medium Risk' product(s): 5

Number of 'Low Risk' product(s): 1

Evaluation of overall 'Risk Level': High Risk


Impact

  • Denial of Service
  • Elevation of Privilege
  • Spoofing
  • Remote Code Execution
  • Information Disclosure
  • Security Restriction Bypass

System / Technologies affected

  • Exchange Server
  • Windows
  • Extended Security Updates (ESU)
  • Microsoft Office
  • Microsoft Dynamics
  • Developer Tools
  • System Center
  • Apps

Solutions

Before installation of the software, please visit the vendor web-site for more details.

  •  Apply fixes issued by the vendor.

Vulnerability Identifier


Source


Related Link

https://msrc.microsoft.com/update-guide/releaseNote/2021-Oct