[English]Microsoft hat die Nacht per Mail über diverse Revisionen seiner Sicherheitshinweise hingewiesen. Es geht um eine Windows DCOM-Server Schwachstelle und Defender for IoT-Schwachstellen. Alles hat aber nur informellen Charakter, Microsoft hat nur die Beschreibungen angepasst. Ich stelle die betreffenden Informationen einfach mal unkommentiert hier im Blog ein.
Anzeige
**********************************************************
Title: Microsoft Security Update Revisions
Issued: January 27, 2022
**********************************************************
Summary
=======
The following CVEs have undergone revision increments.
==========================================================
* CVE-2021-26414
* CVE-2021-42311
* CVE-2021-42313
Anzeige
– CVE-2021-26414 | Windows DCOM Server Security Feature Bypass
– Version: 1.2
– Reason for Revision: Updated FAQs as follows: Revised planned dates for phases Two
and Three; Added recommendation to install September 2021 security updates to
enable DCOM event logs that were added with those updates. These are informational
changes only.
– Originally posted: June 8, 2021
– Updated: January 26, 2022
– Aggregate CVE Severity Rating: Important
– CVE-2021-42311 | Microsoft Defender for IoT Remote Code Execution Vulnerability
– Version: 1.1
– Reason for Revision: Added an FAQ and updated the CVSS score. This is an
informational change only.
– Originally posted: December 14, 2021
– Updated: January 26, 2022
– Aggregate CVE Severity Rating: Important
– CVE-2021-42313 | Microsoft Defender for IoT Remote Code Execution Vulnerability
– Version: 1.1
– Reason for Revision: Added an FAQ and updated the CVSS score. This is an
informational change only.
– December 14, 2021
– Updated: January 26, 2022
– Aggregate CVE Severity Rating: Important
Anzeige