Highlights of Patch Watch Issue 16
Weaponized Vulnerabilities
We have 112 vulnerabilities that are known exploits. Here is our analysis –
-
37 CVEs are RCE bugs.
-
17 CVEs with Privilege Escalation capabilities.
-
25 CVEs linked to Denial of Service.
-
13 CVEs are rated critical, 53 are high, and 40 are of medium severity.
Click here for our analysis and download patches.
Old Vulnerabilities
324 Old vulnerabilities have been fixed, ranging from the year 2014 to 2020.
-
Of these, 95 CVEs have known exploits.
-
12 CVEs with Privilege Escalation.
-
31 CVEs are classified as RCE bugs.
-
42 CVEs are rated critical and 129 are of high severity.
Click here for our analysis and download patches.
CISA Alerts
CISA has issued an alert for 3 vulnerabilities including CVE-2021-27274 that leads to Unrestricted Upload of File with Dangerous Type (CWE – 434) – classified under the Top 15 Most Dangerous Software Weaknesses. Of these, one is rated critical and two of medium severity.
Click here for our analysis and download patches.
Table: Security Patches
Cyberattacks aren’t easy to avoid. However, the future focus should be on internal systems and procedures, rather than external security risks and issues that the organization cannot control. Organizations should make sure that vulnerabilities are minimized by appropriately managing patch management and updates.
CSW’s Patch Watch helps organizations and their overworked security teams patch the most critical vulnerabilities and improve their security posture. Get on our mailing list for more information about emerging threats.
Protect your organization from exposure and breach. We can help shrink your attack surface.
Talk to us.