{"id":8627,"date":"2021-07-27T05:26:06","date_gmt":"2021-07-27T12:26:06","guid":{"rendered":"https:\/\/webdev.securin.xyz\/?post_type=patch_watch&#038;p=8627"},"modified":"2023-03-03T14:33:22","modified_gmt":"2023-03-03T21:33:22","slug":"june-2021-patch-watch-digest","status":"publish","type":"patch_watch","link":"https:\/\/webdev.securin.xyz\/patch_watch\/june-2021-patch-watch-digest\/","title":{"rendered":"June 2021: Patch Watch Digest"},"content":{"rendered":"<h2 dir=\"ltr\"><img decoding=\"async\" style=\"width: 800px; height: 546px;\" src=\"\/wp-content\/uploads\/2015\/11\/patch-watch-1-4.png\" alt=\"\" \/><\/h2>\n<h2 dir=\"ltr\"><strong>Highlights of June Digest<\/strong><\/h2>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\"><a href=\"#Weaponized Vulnerabilities\">21 vendors released security patches for 772 vulnerabilities, including 138 CVEs with known exploits.<\/a><\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\"><a href=\"#CISA Alerts\">7 vulnerabilities that got patched in June were red-flagged by CISA.<\/a><\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\"><a href=\"#Old CVEs\">396 old vulnerabilities have been patched.<\/a><\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\"><a href=\"#Microsoft CVEs\">Microsoft fixed 49 bugs, including 7 zero days.<\/a><\/p>\n<\/li>\n<\/ul>\n<h2 dir=\"ltr\"><strong><a id=\"Weaponized Vulnerabilities\" name=\"Weaponized Vulnerabilities\"><\/a>Weaponized Vulnerabilities<\/strong><\/h2>\n<p>We have 138 vulnerabilities that are known exploits. Here is our analysis \u2013<\/p>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">2 CVE alerted by CISA.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">53 CVEs have RCE capabilities.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">20 CVE with Privilege Escalation capabilities.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">26 CVEs are associated with Denial of Service.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">3 are linked to Webapp exploits.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">19 CVEs are rated critical and 56 are of high severity.<\/p>\n<\/li>\n<\/ul>\n<p dir=\"ltr\"><img decoding=\"async\" style=\"width: 550px;\" src=\"\/wp-content\/uploads\/2015\/11\/patch-watch-2-6.png\" alt=\"\" \/><\/p>\n<h2 dir=\"ltr\"><a id=\"Old CVEs\" name=\"Old CVEs\"><\/a><strong>Old Vulnerabilities Patched in June 2021<\/strong><\/h2>\n<p dir=\"ltr\">Security updates for 396 old vulnerabilities (ranging from 2008 to 2020) have been released.<\/p>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">108 CVEs have known exploits.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">\u00a041 CVEs are classified as RCE bugs.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">13 CVEs linked with Privilege escalation.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">\u00a05 CVE was alerted by CISA.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">\u00a050 CVEs are rated critical and 106 of high severity.<\/p>\n<\/li>\n<\/ul>\n<h2 dir=\"ltr\"><img decoding=\"async\" style=\"width: 550px;\" src=\"\/wp-content\/uploads\/2015\/11\/pw-1-1.png\" alt=\"\" \/><\/h2>\n<h2 dir=\"ltr\"><a id=\"Microsoft CVEs\" name=\"Microsoft CVEs\"><\/a><strong>Microsoft June Patches 2021<\/strong><\/h2>\n<p dir=\"ltr\">Microsoft fixed 49 security vulnerabilities, including seven zero-days.<\/p>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">16 CVEs classified as RCE bugs.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">13 CVEs with privilege escalation capabilities.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">5 CVEs are critical, and 44 are rated as important severity.<\/p>\n<\/li>\n<\/ul>\n<p dir=\"ltr\"><a href=\"https:\/\/cybersecurityworks.com\/patchwatch\/csw-patch-watch\/june-microsoft-patches-49-security-vulnerabilities.html\">Check out our Microsoft patch watch edition here.<\/a><\/p>\n<p dir=\"ltr\"><img decoding=\"async\" style=\"width: 550px; height: 504px;\" src=\"https:\/\/lh4.googleusercontent.com\/7r3CaY8BNiitgljMGJJqfYZvRQcp3mS2aXHCBOjITNybLCQX3iyaNrIipprTXN-8N6hZX60rdIDvwCWPUzU-xfvYXqdg5ayS1CBXMmiV-6rLRPu_1_zVaWW29tYxR54vVnUsLk2s\" \/><\/p>\n<p>&nbsp;<\/p>\n<h2 dir=\"ltr\"><a id=\"CISA Alerts\" name=\"CISA Alerts\"><\/a><strong>CISA Alerts<\/strong><\/h2>\n<p>CISA has issued alerts for seven vulnerabilities, including two publicly known exploits.<\/p>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">2 CVEs are associated with privilege escalation capabilities.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">1 CVEs is rated high and 6 are of medium severity.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">5 CVEs are classified under <a href=\"https:\/\/cwe.mitre.org\/top25\/archive\/2021\/2021_cwe_top25.html\">the Top 40 Most Dangerous Software Weaknesses<\/a>.<\/p>\n<\/li>\n<\/ul>\n<p dir=\"ltr\"><img decoding=\"async\" style=\"width: 550px; height: 475px;\" src=\"\/wp-content\/uploads\/2015\/11\/patch-watch-n.png\" alt=\"\" \/><\/p>\n<p><iframe class=\"airtable-embed\" style=\"background: transparent; border: 1px solid #ccc;\" src=\"https:\/\/airtable.com\/embed\/shru0wyro3RjvN7zx?backgroundColor=purple&amp;viewControls=on\" width=\"100%\" height=\"533\" frameborder=\"0\"><\/iframe><\/p>\n<p dir=\"ltr\"><strong>Table: June Security Patches 2021<\/strong><\/p>\n<p dir=\"ltr\">Patch management helps to minimize instances of vulnerability exploitation. Therefore, users are advised to ensure that they are on the latest version by going into these patch links and installing the latest update.<\/p>\n<p>CSW\u2019s Patch Watch helps organizations stay abreast of the emerging threats and improve their security posture.\u00a0 <a href=\"https:\/\/cybersecurityworks.com\/patchwatch\/\">Get on our mailing list for more information.<\/a><\/p>\n<h3 dir=\"ltr\"><\/h3>\n<p dir=\"ltr\" style=\"text-align: center;\"><span style=\"font-size: 18px;\"><strong>Does your organization have a patch management program? <a href=\"https:\/\/cybersecurityworks.com\/get-quote.php\">Talk to CSW\u2019s Experts to prioritize the threats that need immediate attention!<\/a><\/strong><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Highlights of June Digest 21 vendors released security patches for 772 vulnerabilities, including 138 CVEs with known exploits. 7 vulnerabilities that got patched in June were red-flagged by CISA. 396 old vulnerabilities have been patched. Microsoft fixed 49 bugs, including 7 zero days. Weaponized Vulnerabilities We have 138 vulnerabilities that are known exploits. Here is [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":14443,"parent":0,"menu_order":0,"template":"","meta":{"content-type":""},"patch_category":[288],"acf":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/patch_watch\/8627"}],"collection":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/patch_watch"}],"about":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/types\/patch_watch"}],"author":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/users\/1"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/media\/14443"}],"wp:attachment":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/media?parent=8627"}],"wp:term":[{"taxonomy":"patch_category","embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/patch_category?post=8627"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}