Skip to main content
Customer Support Customer Support

Microsoft Security Update Releases Issued: September 17, 2021

  • September 18, 2021
  • 0 replies
  • 12 views
TripleHelix
Moderator
Forum|alt.badge.img+63

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

 

**************************************************************************************

Title: Microsoft Security Update Releases

Issued: September 17, 2021

**************************************************************************************

 

Summary

=======

 

The following CVEs have undergone a major revision increment:

 

* CVE-2021-38647

 

 - Open Management Infrastructure Remote Code Execution Vulnerability

 - https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38647

 - Version 3.0

 - Reason for Revision: The following revisions

   have been made: 1) In the Security Updates table, additional affected products have

   been added. 2) Additional Guidance Regarding OMI Vulnerabilities within Azure VM

   Management Extensions

   (https://msrc-blog.microsoft.com/2021/09/16/additional-guidance-regarding-omi-vulnerabilities-within-azure-vm-management-extensions/)

   has been updated with further information about identifying VMs that are affected

   by this vulnerability.

 - Originally posted: September 14, 2021

 - Updated: September 17, 2021

 

 

* CVE-2021-38645

* CVE-2021-38648

* CVE-2021-36849

 

 - Open Management Infrastructure Elevation of Privilege Vulnerability

 - https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38645

 

 - Open Management Infrastructure Elevation of Privilege Vulnerability

 - https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38648

 

 - Open Management Infrastructure Elevation of Privilege Vulnerability

 - https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38649

 

Revision information

===========================

 

 - Version 3.0

 - Reason for Revision: The following revisions

   have been made: 1) In the Security Updates table, additional affected products have

   been added. 2) Additional Guidance Regarding OMI Vulnerabilities within Azure VM

   Management Extensions

   (https://msrc-blog.microsoft.com/2021/09/16/additional-guidance-regarding-omi-vulnerabilities-within-azure-vm-management-extensions/)

   has been updated with further information about identifying VMs that are affected

   by this vulnerability.

 - Originally posted: September 14, 2021

 - Updated: September 17, 2021

 

 

**************************************************************************************

 

Other Information

=================

 

Recognize and avoid fraudulent email to Microsoft customers:

======================================================================================

 

If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites.

Microsoft does not distribute security updates via email.

 

Daniel - Microsoft MVP Consumer Security (2012-2016) Windows 10 Pro x64 for Workstations 22H2 on my Alienware 17R2 and Windows 11 Pro x64 for Workstations on my Alienware 17R5 Laptops with Webroot SecureAnywhere Complete Beta Tester for PC & Android Samsung Galaxy A16 5G OS 16.
ProTruckDriver
Jasper_The_Rasper
TripleHelix

Terms & ConditionsAccessibility statement