Microsoft’s Security Patches for August 2021 Addresses 44 CVEs

“In this month’s release, Microsoft addressed three vulnerabilities in Windows Print Spooler, which has been a major focus over the last few months following patches for CVE-2021-1675 as well as CVE-2021-34527, also known as PrintNightmare.

“Two of the three Print Spooler vulnerabilities patched this month, CVE-2021-36947 and CVE-2021-36936 are rated as “Exploitation More Likely,” according to Microsoft’s Exploitability Index. CVE-2021-36936 is also identified as being Publicly Disclosed, which implies this is one of the additional vulnerabilities researchers have uncovered since PrintNightmare was first disclosed. Because of the ubiquitous nature of the Windows Print Spooler within networks, organizations should prioritize patching these flaws as soon as possible.

Satnam Narang, staff research engineer, Tenable sadi, ‘Microsoft also patched CVE-2021-36948, a zero-day elevation of privilege vulnerability in the Windows Update Medic Service that was reportedly exploited in the wild. It was reported internally by Microsoft’s security research teams and is the only vulnerability patched this month that was exploited in the wild as a zero-day.”

LEAVE A REPLY

Please enter your comment!
Please enter your name here