Microsoft Monthly Security Update (December 2021)

Release Date: 15 Dec 2021 4227 Views

RISK: Extremely High Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS

Microsoft has released monthly security update for their products:

Vulnerable Product	Risk Level	Impacts	Notes
Extended Security Updates (ESU)	Medium Risk	Elevation of Privilege Remote Code Execution Information Disclosure
Windows	Medium Risk	Elevation of Privilege Remote Code Execution Information Disclosure Denial of Service
System Center	Medium Risk	Remote Code Execution Elevation of Privilege Information Disclosure
Developer Tools	Medium Risk	Remote Code Execution Elevation of Privilege Spoofing
Microsoft Office	Medium Risk	Spoofing Remote Code Execution Elevation of Privilege Information Disclosure
Device	Medium Risk	Remote Code Execution
Apps	High Risk	Spoofing Remote Code Execution	CVE-2021-43890 is being explioted in the wild
Browser	Extremely High Risk	Remote Code Execution Security Restriction Bypass	CVE-2021-4102 is being explioted in the wild

Number of 'Extremely High Risk' product(s): 1

Number of 'High Risk' product(s): 1

Number of 'Medium Risk' product(s): 6

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': Extremely High Risk

Impact

Denial of Service
Elevation of Privilege
Remote Code Execution
Security Restriction Bypass
Information Disclosure
Spoofing

System / Technologies affected

Extended Security Updates (ESU)
Windows
System Center
Developer Tools
Microsoft Office
Device
Apps
Browser

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor.

Vulnerability Identifier

https://www.cvedetails.com/vulnerability-list.php?vendor_id=26&year=2021&month=12

Source

Microsoft

Related Link

https://msrc.microsoft.com/update-guide/releaseNote/2021-Dec

Related Tags

Share with

Google Chrome Multiple Vulnerabilities

14 Dec 2021 4817 Views

Apple Products Multiple Vulnerabilities

15 Dec 2021 4052 Views