9 Zero-days fixed in July 2021 Patch Tuesday

9 Zero-days fixed in July 2021 Patch Tuesday

Hello everyone,

July 2021 Patch Tuesday comes with fixes for 117 vulnerabilities, out of which 9 are zero-day vulnerabilities. All the zero-day patches are supported by Patch Manager Plus. The details of the zero-day vulnerabilities are as follows:

 CVE ID
 Vulnerability
 Publicly Disclosed
 Actively Exploited
 CVE-2021-34492
 Windows Certificate Spoofing Vulnerability
 
 
 CVE-2021-34523
 Microsoft Exchange Server Elevation of Privilege Vulnerability
 
 
 CVE-2021-34473
 Microsoft Exchange Server Remote Code Execution Vulnerability
 
 
 CVE-2021-33779
 Windows ADFS Security Feature Bypass Vulnerability
 
 
 CVE-2021-33781
 Active Directory Security Feature Bypass Vulnerability
 
 
 CVE-2021-34527
 Windows Print Spooler Remote Code Execution Vulnerability
 
 
 CVE-2021-33771
 Windows Kernel Elevation of Privilege Vulnerability
 
 
 CVE-2021-34448
 Scripting Engine Memory Corruption Vulnerability
 
 
 CVE-2021-31979
 Windows Kernel Elevation of Privilege Vulnerability
 
 

CVE-2021-33771, CVE-2021-34448, and CVE-2021-31979, the patches to be deployed are as follows. Initiate a sync between the Patch Manager Plus server and the Central Patch Repository and deploy the relevant patches to your target systems.

For CVE-2021-33771
 Patch ID
 Bulletin ID
 Patch Description
 31703
 MS21-JUL2
 2021-07 Security Only Quality Update for Windows Server 2012 R2 for x64-based Systems (KB5004285)
 31704
 MS21-JUL2
 2021-07 Security Only Quality Update for Windows 8.1 for x86-based Systems (KB5004285)
 31705
 MS21-JUL2
 2021-07 Security Only Quality Update for Windows 8.1 for x64-based Systems (KB5004285)
 31717
 MS21-JUL6
 2021-07 Security Monthly Quality Rollup for Windows 8.1 for x64-based Systems (KB5004298)
 31718
 MS21-JUL6
 2021-07 Security Monthly Quality Rollup for Windows 8.1 for x86-based Systems (KB5004298)
 31719
 MS21-JUL6
 2021-07 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems (KB5004298)
 31735
 MS21-JUL3
 2021-07 Cumulative Update for Windows Server 2019 for x64-based Systems (KB5004244)
 31736
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 1809 for x86-based Systems (KB5004244)
 31737
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5004244)
 31738
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 2004 for x86-based Systems (KB5004237)
 31740
 MS21-JUL3
 2021-07 Cumulative Update for Windows Server, version 2004 for x64-based Systems (KB5004237)
 31741
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 2004 for x64-based Systems (KB5004237)
 31742
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 20H2 for x64-based Systems (KB5004237)
 31743
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 20H2 for x86-based Systems (KB5004237)
 31744
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 21H1 for x86-based Systems (KB5004237)
 31745
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 21H1 for x64-based Systems (KB5004237)
 31746
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 1909 for x64-based Systems (KB5004245)
 31747
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 1909 for x86-based Systems (KB5004245)
 31748
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 1607 for x86-based Systems (KB5004238)
 31749
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB5004238)
 31750
 MS21-JUL3
 2021-07 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5004238)
 31751
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 1507 for x64-based Systems (KB5004249)
 31752
 MS21-JUL3
 2021-07 Cumulative Update for Windows 10 Version 1507 for x86-based Systems (KB5004249)

For CVE-2021-34448 and CVE-2021-31979, refer to this post

Cheers, 
The ManageEngine Team