This month, Microsoft released security updates for 71 vulnerabilities and risk exposures, including three of Critical impact. Microsoft also released updates to resolve four vulnerabilities identified as “Zero Days”. Guidance for the most Critical updates is highlighted below:
Vulnerability | Affected Products | CVEs |
Win32k elevation of privilege | All Windows versions | CVE-2021-40449 |
Microsoft Word remote code execution | Microsoft Word, Office, Office Online Server, Office Web Apps, SharePoint | CVE-2021-40486 |
Windows Hyper-V remote code execution | Windows 11, Windows Server 2022 | CVE-2021-38672 |
Windows Hyper-V remote code execution | Windows 10-11, Windows Server 2019-2022 | CVE-2021-40461 |
SAINT released updates for these issues on October 13, 2021. Please ensure your SAINT product is updated to version 9.9.91 or higher and scan your environment to ensure all updates have been applied, to mitigate against threats that target these vulnerabilities. Additional information about these vulnerabilities, as well as the impacts and resolution details can be found in the Tutorials released in this update.
If you need assistance updating SAINT to the current version or help on other SAINT topics, contact support at support@saintcorporation.com. If you need assistance getting SAINT for your organization, please contact sales at be.secure@carsoninc.com.
Follow us on social media for the latest on SAINT updates and our security services below: