Skip to main content
Customer Support Customer Support

Microsoft Security Update Revisions Issued: December 16, 2021

  • December 17, 2021
  • 0 replies
  • 12 views
TripleHelix
Moderator
Forum|alt.badge.img+63

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256

 

************************************************************************************

Title: Microsoft Security Update Revisions

Issued: December 16, 2021

************************************************************************************

 

Summary

=======

 

The following CVE has been published to the Security Update Guide.

======================================================================================

 

* CVE-2021-44228

 

 - CVE-2021-44228 | Apache Log4j Remote Code Execution Vulnerability

 - https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-44228

 - Version: 1.0

 - Reason for Revision: Information published.

 - Originally posted: December 16, 2021

 - Updated: N/A

 - Aggregate CVE Severity Rating: Important

 

 

The following CVEs have undergone revision increments.

======================================================================================

 

* CVE-2021-43236

* CVE-2021-43883

* CVE-2021-43893

* CVE-2021-43905

 

 - CVE-2021-43236 | Microsoft Message Queuing Information Disclosure Vulnerability

 - https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43236

 - Version: 1.1

 - Reason for Revision: Updated FAQ information. This is an informational change only.

 - Originally posted: December 14, 2021

 - Updated: December 16, 2021

 - Aggregate CVE Severity Rating: Important

 

 - CVE-2021-43883 | Windows Installer Elevation of Privilege Vulnerability

 - https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43883

 - Version: 1.1

 - Reason for Revision: Corrected the Download and Article links in the Affected

   Products table. This is an informational change only.

 - Originally posted: December 14, 2021

 - Updated: December 16, 2021

 - Aggregate CVE Severity Rating: Important

 

 - CVE-2021-43893 | Windows Encrypting File System (EFS) Elevation of Privilege

   Vulnerability

 - https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43893

 - Version: 1.1

 - Reason for Revision: Corrected Article and Download entries in the Affected

   Products table. This is an informational change only.

 - Originally posted: December 14, 2021

 - Updated: December 16, 2021

 - Aggregate CVE Severity Rating: Important

 

 - CVE-2021-43905 | Microsoft Office app Remote Code Execution Vulnerability

 - https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43905

 - Version: 1.1

 - Reason for Revision: Added an FAQ to indicate the app version that contains

   the update.

 - Originally posted: December 14, 2021

 - Updated: December 16, 2021

 - Aggregate CVE Severity Rating: Critical

 

 

Other Information

=================

 

Recognize and avoid fraudulent email to Microsoft customers:

=============================================================

If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email.

 

Daniel - Microsoft MVP Consumer Security (2012-2016) Windows 10 Pro x64 for Workstations 22H2 on my Alienware 17R2 and Alienware 17R5 Laptops with Webroot SecureAnywhere Complete Beta Tester for PC & Android Moto G9 Plus OS 11. "Take Them to the Train Station" ¯\_(ツ)_/¯

0 replies

Be the first to reply!

Reply


Terms & Conditions