Friday, February 3, 2023
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory
  • Login
  • Register
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
No Result
View All Result

Home > Cybersecurity > Windows security update fixes 67 flaws

Windows security update fixes 67 flaws

Windows update fixes the zero-day flaw to fix the Emotet malware alongside other security vulnerabilities.


Rusen Gobel Rusen Gobel
December 16, 2021
2 min read
Windows security update fixes 67 flaws

Microsoft has released an update within their usual schedule with several fixes for vulnerabilities in Windows operating system’s different components. The update also fixes an actively exploited flaw used for delivering Emotet, TrickBot, and Bazaloader malware payloads.

7 flaws are critical, 5 flaws are publicly known

The monthly update fixes a total of 67 flaws. While 7 of them are Critical, the remaining 60 flaws are rated as Important. 5 of these 67 flaws were known publicly known.

The most critical vulnerability was CVE-2021-43890, with a CVSS score of 7.1. It is a Windows AppX installer spoofing vulnerability that could be exploited for arbitrary code execution. This flaw is said to be less dangerous for those users who logged with low user level in the user settings while being more dangerous for high user level ones.

The 5 flaws that are publicly known are listed below:

  • CVE-2021-41333 (CVSS score: 7.8) – Windows Print Spooler elevation of privilege vulnerability
  • CVE-2021-43883 (CVSS score: 7.8) – Windows Installer elevation of privilege vulnerability
  • CVE-2021-43240 (CVSS score: 7.8) – NTFS set short name elevation of privilege vulnerability
  • CVE-2021-43893 (CVSS score: 7.5) – Windows Encrypting File System (EFS) elevation of privilege vulnerability
  • CVE-2021-43880 (CVSS score: 5.5) – Windows Mobile Device Management elevation of privilege vulnerability

Windows 10 and Windows 11 users should leave automatic updates “on” while also manually checking for updates from time to time. Sometimes an update may need a user confirmation, blocking the remaining update pipeline.

See more Cybersecurity News


Tags: Microsoft
Rusen Gobel

Rusen Gobel

Rusen Gobel is a news editor at Cloud7 News. With more than 10 years of experience, Rusen worked as a hardware and software news editor for technology sites such as Shiftdelete, Teknokolis, Hardware Plus, BT Haber. In addition, Rusen publishes consumer product reviews on his YouTube channel. While consumer electronics has been his main focus for years, now Rusen is more interested in WordPress and software development. He had contributed different web application projects in his professional career. Rusen had graduated from Istanbul University, department of Computer Engineering. Rusen has a very high passion for learning and writing for every kind of technology. That's why he has been working as a tech editor for more than ten years on several different technology magazines and online news portals.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

I agree to the Terms & Conditions and Privacy Policy.

Next Post
How to scan your server for Log4j (Log4Shell) vulnerability

How to scan your server for Log4j (Log4Shell) vulnerability

Related News

APTs are looking for developers to hire with hefty paychecks

APTs are looking for developers to hire with hefty paychecks

February 1, 2023 2:30 pm
US extradites ShinyHunters hacker

US extradites ShinyHunters hacker

February 1, 2023 1:30 pm
Hacker steals code signing certificates for GitHub Desktop and Atom

Hacker steals code signing certificates for GitHub Desktop and Atom

February 1, 2023 1:00 pm
QNAP releases a patch for a new critical flaw affecting NAS devices

QNAP releases a patch for a new critical flaw affecting NAS devices

February 1, 2023 11:00 am
Get free daily newsletters from Cloud7 News Get the Cloud7 Newsletter
Select list(s):

Check your inbox or spam folder to confirm your subscription.

By subscribing, you agree to our
Copyright Policy and Privacy Policy

Get the free newsletter

Subscribe to receive the latest IT business updates straight to your inbox.

Select list(s):

Check your inbox or spam folder to confirm your subscription.

Editor's Choice

What’s new in Linux kernel 6.2 rc6?

10 Best Web Hosting Services of 2023

Ubuntu 22.04 LTS is available for download. What is new?

CERN and Fermilab recommend AlmaLinux

7 best hosting control panels of 2023

How to update Linux Kernel without rebooting?

7 best Linux mail servers of 2023

7 best cPanel alternatives for 2023

7 best Linux web browsers for 2023

7 best CentOS alternatives

7 best Linux server distros of 2023

Interview with Igor Seletskiy on AlmaLinux

How to create a VM on VMware Workstation

Recent News

  • Private equity dominates data center M&A deals
  • The ultimate distro-blend blendOS arrives
  • OpenAI’s AI classifier tool can now detect AI-written text
  • What’s new in Linux Mint 21.2 “Victoria”?
  • Microsoft Defender has been improved for Linux endpoints

Cloud7 News
Cloud7 is a news source that publishes the latest news, reviews, comparisons, opinions, and exclusive interviews to help tech users of high-experience levels in the IT industry.

EXPLORE

  • Web Hosting
  • Cloud Computing
  • Data Center
  • Cybersecurity
  • Linux
  • Network/Internet
  • Software
  • Hardware
  • How-Tos
  • Troubleshooting

RESOURCES

  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

Get the Cloud7 Newsletter

Get FREE daily newsletters from Cloud7 delivering the latest news and reviews.

  • About
  • Privacy & Policy
  • Copyright Policy
  • Contact

© 2023, Cloud7 News. All rights reserved.

No Result
View All Result
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

© 2023, Cloud7 News. All rights reserved.

Welcome Back!

Sign In with Facebook
Sign In with Google
Sign In with Linked In
OR

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Sign Up with Facebook
Sign Up with Google
Sign Up with Linked In
OR

Fill the forms below to register

*By registering into our website, you agree to the Terms & Conditions and Privacy Policy.
All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.