February 2021 Patch Tuesday Index

D

on't miss a single vulnerability this Patch Tuesday. The latest patches and updates from Microsoft and multiple third-party applications can be found in February's Patch Tuesday Index below.

February's Patch Tuesday brings 56 new vulnerabilities, including 11 critical updates, from Microsoft. While the overall number of vulnerabilities fixed this month is relatively low, there is a zero-day, CVE-2021-1732, being exploited in the wild. It's also worth noting that all 11 of the Critical rated updates fix Remote Code Execution vulnerabilities.

Adobe has released fixes for numerous vulnerabilities spanning across Dreamweaver, Illustrator, Animate, Photoshop, Magento, Acrobat, and Reader. Adobe has received a report that CVE-2021-21017 has been exploited in the wild in limited attacks targeting Adobe Reader users on Windows.

Automox Patch Tuesday expert Nicholas Colyer will be breaking down all of February's Patch Tuesday releases tomorrow, February 10, 2021. Register here so you can prioritize the patches for your environment and ask any question you may have.

Updated Live. Last Update 1:05 PM EST February 09, 2021.

firefox Mozilla Firefox
Product
Title
Identifier
Severity
Firefox & Firefox ESR 1 security vulnerability fixed in Firefox and Firefox ESR MFSA 2021-06 Critical
adobe Adobe
Product
Title
Identifier
Severity
Adobe Acrobat & Reader 23 Security Vulnerabilities fixed in Adobe Acrobat & Reader APSB21-09 Critical
Adobe Magento 18 Security Vulnerabilities fixed in Adobe Magento APSB21-08 High
Adobe Photoshop 5 Security Vulnerabilities fixed in Adobe Photoshop APSB21-10 Critical
Adobe Animate 1 Security Vulnerability fixed in Adobe Animate APSB21-11 Critical
Adobe Illustrate 2 Security Vulnerabilities fixed in Adobe Illustrate APSB21-12 Critical
Adobe Dreamweaver 1 Security Vulnerability fixed in Adobe Dreamweaver APSB21-13 High
apple Apple
Product
Title
Identifier
Severity
macOS Big Sur 11.2 Security Update 2021-001 Catalina, Security Update 2021-001 Mojave HT212147 N/A
Safari Browser Safari 14.0.3 HT212152 N/A
microsoft Microsoft
Product
Title
Identifier
Severity
Role: Windows Fax Service Windows Fax Service Remote Code Execution Vulnerability CVE-2021-1722 Critical
Windows TCP/IP Windows TCP/IP Remote Code Execution Vulnerability CVE-2021-24074 Critical
Role: Windows Fax Service Windows Fax Service Remote Code Execution Vulnerability CVE-2021-24077 Critical
Role: DNS Server Windows DNS Server Remote Code Execution Vulnerability CVE-2021-24078 Critical
Microsoft Windows Codecs Library Microsoft Windows Codecs Library Remote Code Execution Vulnerability CVE-2021-24081 Critical
Windows Print Spooler Components Windows Local Spooler Remote Code Execution Vulnerability CVE-2021-24088 Critical
Microsoft Windows Codecs Library Windows Camera Codec Pack Remote Code Execution Vulnerability CVE-2021-24091 Critical
Microsoft Graphics Component Windows Graphics Component Remote Code Execution Vulnerability CVE-2021-24093 Critical
Windows TCP/IP Windows TCP/IP Remote Code Execution Vulnerability CVE-2021-24094 Critical
.NET Core .NET Core Remote Code Execution Vulnerability CVE-2021-26701 Critical
.NET Core .NET Core Remote Code Execution Vulnerability CVE-2021-24112 Critical
Windows Hyper-V Hyper-V Denial of Service Vulnerability CVE-2021-1692 High
Microsoft Teams Microsoft Teams iOS Information Disclosure Vulnerability CVE-2021-24114 High
Visual Studio Code Visual Studio Code npm-script Extension Remote Code Execution Vulnerability CVE-2021-26700 High
Windows Kernel Windows Win32k Elevation of Privilege Vulnerability CVE-2021-1732 High
ASP.NET core and .NET core .NET Core and Visual Studio Denial of Service Vulnerability CVE-2021-1721 High
Windows Installer Windows Installer Elevation of Privilege Vulnerability CVE-2021-1727 High
SysInternals Sysinternals PsExec Elevation of Privilege Vulnerability CVE-2021-1733 High
Windows Console Driver Windows Console Driver Denial of Service Vulnerability CVE-2021-24098 High
Windows DirectX Windows DirectX Information Disclosure Vulnerability CVE-2021-24106 High
Visual Studio Visual Studio Code Remote Code Execution Vulnerability CVE-2021-1639 High
Windows Kernel Windows Win32k Elevation of Privilege Vulnerability CVE-2021-1698 High
Microsoft Dynamics Microsoft Dynamics Business Central Cross-site Scripting Vulnerability CVE-2021-1724 High
Microsoft Office SharePoint Microsoft SharePoint Spoofing Vulnerability CVE-2021-1726 High
System Center System Center Operations Manager Elevation of Privilege Vulnerability CVE-2021-1728 High
Microsoft Exchange Server Microsoft Exchange Server Spoofing Vulnerability CVE-2021-1730 High
Windows PFX Encryption PFX Encryption Security Feature Bypass Vulnerability CVE-2021-1731 High
Microsoft RPC Windows Remote Procedure Call Information Disclosure Vulnerability CVE-2021-1734 High
Microsoft Office SharePoint Microsoft SharePoint Remote Code Execution Vulnerability CVE-2021-24066 High
Microsoft Office Excel Microsoft Excel Remote Code Execution Vulnerability CVE-2021-24067 High
Microsoft Office Excel Microsoft Excel Remote Code Execution Vulnerability CVE-2021-24068 High
Microsoft Office Excel Microsoft Excel Remote Code Execution Vulnerability CVE-2021-24069 High
Microsoft Office Excel Microsoft Excel Remote Code Execution Vulnerability CVE-2021-24070 High
Microsoft Office SharePoint Microsoft SharePoint Information Disclosure Vulnerability CVE-2021-24071 High
Microsoft Office SharePoint Microsoft SharePoint Server Remote Code Execution Vulnerability CVE-2021-24072 High
Skype for Business Skype for Business and Lync Spoofing Vulnerability CVE-2021-24073 High
Windows Network File System Windows Network File System Denial of Service Vulnerability CVE-2021-24075 High
Role: Hyper-V Microsoft Windows VMSwitch Information Disclosure Vulnerability CVE-2021-24076 High
Windows Backup Engine Windows Backup Engine Information Disclosure Vulnerability CVE-2021-24079 High
Windows PowerShell Microsoft.PowerShell.Utility Module WDAC Security Feature Bypass Vulnerability CVE-2021-24082 High
Windows Address Book Windows Address Book Remote Code Execution Vulnerability CVE-2021-24083 High
Windows Mobile Device Management Windows Mobile Device Management Information Disclosure Vulnerability CVE-2021-24084 High
Microsoft Exchange Server Microsoft Exchange Server Spoofing Vulnerability CVE-2021-24085 High
Windows TCP/IP Windows TCP/IP Denial of Service Vulnerability CVE-2021-24086 High
Azure IoT Azure IoT CLI extension Elevation of Privilege Vulnerability CVE-2021-24087 High
Windows Defender Microsoft Defender Elevation of Privilege Vulnerability CVE-2021-24092 High
Windows Kernel Windows Kernel Elevation of Privilege Vulnerability CVE-2021-24096 High
Skype for Business Skype for Business Denial of Service Vulnerability CVE-2021-24099 High
Microsoft Edge for Android Microsoft Edge for Android Information Disclosure Vulnerability CVE-2021-24100 High
Microsoft Dynamics Microsoft Dataverse Information Disclosure Vulnerability CVE-2021-24101 High
Windows Event Tracing Windows Event Tracing Elevation of Privilege Vulnerability CVE-2021-24102 High
Windows Event Tracing Windows Event Tracing Elevation of Privilege Vulnerability CVE-2021-24103 High
Developer Tools Package Managers Configurations Remote Code Execution Vulnerability CVE-2021-24105 High
.NET Framework .NET Framework Denial of Service Vulnerability CVE-2021-24111 High
Windows PKU2U Windows PKU2U Elevation of Privilege Vulnerability CVE-2021-25195 High
Windows Trust Verification API Windows Trust Verification API Denial of Service Vulnerability CVE-2021-24080 Medium
Microsoft Azure Kubernetes Service Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability CVE-2021-24109 Medium

More posts like this:

Patch TuesdayVulnerabilityWindows
# of endpoints

15-day free trial. No credit card required.

By submitting this form you agree to our terms of service.

Already have an account?