Microsoft Monthly Security Update (May 2021)

Last Update Date: 20 May 2021 Release Date: 12 May 2021 5375 Views

RISK: High Risk

High Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS

Microsoft has released monthly security update for their products:

 

Vulnerable ProductRisk LevelImpactsNotes
WindowsHigh Risk High RiskSpoofing
Information Disclosure
Remote Code Execution
Elevation of Privilege
Denial of Service
Security Restriction Bypass		Proof Of Concept Exploit Code Is Publicly Available for CVE-2021-31166
Extended Security Updates (ESU)Medium Risk Medium RiskSpoofing
Information Disclosure
Remote Code Execution
Elevation of Privilege		 
Developer ToolsMedium Risk Medium RiskRemote Code Execution
Elevation of Privilege		 
Microsoft OfficeMedium Risk Medium RiskRemote Code Execution
Information Disclosure
Spoofing		 
Microsoft DynamicsLow Risk Low RiskSpoofing 
BrowserMedium Risk Medium RiskRemote Code Execution 
Exchange ServerMedium Risk Medium RiskRemote Code Execution
Security Restriction Bypass
Spoofing		 
Open Source SoftwareMedium Risk Medium RiskRemote Code Execution 
AzureMedium Risk Medium RiskInformation Disclosure 

 

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 1

Number of 'Medium Risk' product(s): 7

Number of 'Low Risk' product(s): 1

Evaluation of overall 'Risk Level': High Risk

 

[Updated 20-May-2021] Proof Of Concept Exploit Code Is Publicly Available for CVE-2021-31166. Risk Level Has Been Escalated to High Risk.

Impact

  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure
  • Spoofing

System / Technologies affected

  • Windows
  • Extended Security Updates (ESU)
  • Developer Tools
  • Microsoft Office
  • Microsoft Dynamics
  • Browser
  • Exchange Server
  • Open Source Software
  • Azure

Solutions

Before installation of the software, please visit the vendor web-site for more details.

  •  Apply fixes issued by the vendor.

Vulnerability Identifier

Source

Related Link

Related Tags

MicrosoftDenial of ServiceElevation of PrivilegeRemote Code ExecutionSecurity Restriction BypassInformation DisclosureSpoofing

Share with

Previous

Cisco Products Multiple Vulnerabilities

17 May 2021 5101 Views

Next

IBM WebSphere Application Server Data Manipulation Vulnerability

24 May 2021 5373 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY