This month, Microsoft released security updates for 44 vulnerabilities and risk exposures, including seven of Critical impact, and 37 classified as Important. Microsoft also released updates to resolve three vulnerabilities identified as “Zero Days”. Guidance for the most Critical updates is highlighted below:
Vulnerability | Affected Products | CVEs |
Windows Update Medic Service Elevation of Privilege Vulnerability | Windows 10, Windows Server 2019 | CVE-2021-36948 |
Windows TCP/IP Remote Code Execution Vulnerability | All supported Windows versions | CVE-2021-26424 |
Windows Print Spooler Remote Code Execution Vulnerability | All supported Windows versions | CVE-2021-36936 |
Windows LSA Spoofing Vulnerability | Windows Server 2008 through 2019 | CVE-2021-36942 |
SAINT released updates for these issues on August 11, 2021. Please ensure your SAINT product is updated to version 9.9.73 or higher and scan your environment to ensure all updates have been applied, to mitigate against threats that target these vulnerabilities. Additional information about these vulnerabilities, as well as the impacts and resolution details can be found in the Tutorials released in this update.
If you need assistance updating SAINT to the current version or help on other SAINT topics, contact support at support@saintcorporation.com. If you need assistance getting SAINT for your organization, please contact sales at be.secure@carsoninc.com.
Follow us on social media for the latest on SAINT and our security services below: