{"id":8709,"date":"2021-03-22T07:18:03","date_gmt":"2021-03-22T14:18:03","guid":{"rendered":"https:\/\/webdev.securin.xyz\/?post_type=patch_watch&#038;p=8709"},"modified":"2023-03-03T14:27:27","modified_gmt":"2023-03-03T21:27:27","slug":"february-2021-patch-watch-digest","status":"publish","type":"patch_watch","link":"https:\/\/webdev.securin.xyz\/patch_watch\/february-2021-patch-watch-digest\/","title":{"rendered":"February 2021: Patch Watch Digest"},"content":{"rendered":"<h2 dir=\"ltr\"><img decoding=\"async\" style=\"width: 800px; height: 393px;\" src=\"\/wp-content\/uploads\/2015\/11\/highlights1.png\" alt=\"\" \/><\/h2>\n<h2 dir=\"ltr\"><strong>Highlights of February Digest<\/strong><\/h2>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\"><a href=\"#Know exploits\">25 vendors released security patches for 1007 vulnerabilities, including 122 CVEs with known exploits.<\/a><\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\"><a href=\"#CISA\">10 vulnerabilities that got patched were alerted by CISA.<\/a><\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\"><a href=\"#Old CVEs\">654 old vulnerabilities have been patched.<\/a><\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\"><a href=\"#Microsoft patches\">Microsoft pulls out 56 bugs this month.<\/a><\/p>\n<\/li>\n<\/ul>\n<h3 dir=\"ltr\"><strong><a id=\"Know exploits\" name=\"Know exploits\"><\/a>Weaponized Vulnerabilities<\/strong><\/h3>\n<p dir=\"ltr\">We have 122 weaponized vulnerabilities with known exploits. Here is our analysis \u2013<\/p>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">21 CVEs are rated critical, and 40 are high severity.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">1 CVE has been alerted by CISA.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">4 CVEs have Privilege Escalation capabilities.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">37 CVEs are associated with Remote Code Execution.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">16 CVEs are Webapp exploits.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">29 CVEs have Denial of Service.<\/p>\n<\/li>\n<\/ul>\n<p dir=\"ltr\"><img decoding=\"async\" style=\"width: 600px; height: 369px;\" src=\"\/wp-content\/uploads\/2015\/11\/weaponized-vulnerabilities-5.png\" alt=\"\" \/><\/p>\n<p dir=\"ltr\"><a href=\"#Airtable\">Click here for our analysis and download patches.<\/a><\/p>\n<p dir=\"ltr\">Based on a survey, 60 percent of organizations suffered a data breach that exploited a known vulnerability for which a patch existed. Therefore, maintaining security hygiene is essential and patch management paramount.<\/p>\n<h3><strong><a id=\"Old CVEs\" name=\"Old CVEs\"><\/a>Old Vulnerabilities Patched in February 2021<\/strong><\/h3>\n<p dir=\"ltr\">654 Old vulnerabilities ranging from the year 2009 to 2020 have been patched.<\/p>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">5 CVEs are linked to ransomware strains.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">2 CVEs are associated with the Mercury APT group.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">5 CVEs have been alerted by CISA.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">4 CVEs have PE capabilities.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">29 CVEs are RCE bugs.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">13 CVEs are Webapp exploits<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">27 CVEs have Denial of Service.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">42 CVEs are critical and 167 of high severity.<\/p>\n<\/li>\n<\/ul>\n<p dir=\"ltr\"><a href=\"#Airtable\">Click here for our analysis and download patches.<\/a><\/p>\n<p dir=\"ltr\"><img decoding=\"async\" style=\"width: 600px; height: 415px;\" src=\"\/wp-content\/uploads\/2015\/11\/old-vulnerabilities-2.png\" alt=\"\" \/><\/p>\n<p dir=\"ltr\">87% of the old vulnerabilities patched are weaponized. Organizations should pay attention to old vulnerabilities that exist in their software and immediately fix them.<\/p>\n<h3 dir=\"ltr\"><strong><a id=\"Microsoft patches\" name=\"Microsoft patches\"><\/a>Microsoft February Patches 2021<\/strong><\/h3>\n<p dir=\"ltr\">Microsoft issued patches for 56 security vulnerabilities, including a zero-day(CVE id) that was exploited for the past seven months.<\/p>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">11 CVEs are critical, 2 as medium, and 43 are important.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\"><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2021-1732\">CVE-2021-1732<\/a> &#8211; a Windows zero-day bug with privilege escalation weakness in Win32k, a core component of the Windows operating system.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">This CVE was exploited the day before the patch release, which is believed to be employed by the Bitter APT group.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">Exploit code of 6 CVEs was posted online just before the patch was released. The vulnerabilities are CVE-2021-1721, CVE-2021-1733, CVE-2021-26701, CVE-2021-1727, CVE-2021-24098, and CVE-2021-24106.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">Microsoft published a <a href=\"https:\/\/msrc-blog.microsoft.com\/2021\/02\/09\/multiple-security-updates-affecting-tcp-ip\/\">blog post<\/a> warning about three vicious vulnerabilities in Windows TCP\/IP stack, which allows the operating system to connect to the internet.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">A second round of security update has been issued for Zerlogon vulnerability\u00a0CVE-2020-1472, that\u00a0witnessed active exploitation back in September 2020.<\/p>\n<\/li>\n<\/ul>\n<p dir=\"ltr\"><img decoding=\"async\" style=\"width: 600px; height: 455px;\" src=\"\/wp-content\/uploads\/2015\/11\/microsoft-february-2021-patches.png\" alt=\"\" \/><\/p>\n<h4 dir=\"ltr\"><strong>Product Analysis of Microsoft Patches<\/strong><\/h4>\n<p dir=\"ltr\">Let\u2019s take a closer look at the product analysis of this month&#8217;s patches. We observed Microsoft patches and found that 21 CVEs were associated with RCE and 12 with PE.<\/p>\n<p><iframe class=\"airtable-embed\" style=\"background: transparent; border: 1px solid #ccc;\" src=\"https:\/\/airtable.com\/embed\/shrsbI80ipDVc2mrm?backgroundColor=green&amp;viewControls=on\" width=\"100%\" height=\"533\" frameborder=\"0\"><\/iframe><\/p>\n<h5 dir=\"ltr\"><span style=\"font-size: 14px;\"><strong>Table: Product Based Analysis<\/strong><\/span><\/h5>\n<p dir=\"ltr\"><a href=\"#Airtable\">Click here for our analysis and download patches.<\/a><\/p>\n<h3><strong><a id=\"CISA\" name=\"CISA\"><\/a>CISA Alerts<\/strong><\/h3>\n<p dir=\"ltr\">14 vulnerabilities have been issued a warning alert by CISA<\/p>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">1 CVE has been weaponized.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">1 CVE is rated critical, 1 of high, and 5 of medium severity.<\/p>\n<\/li>\n<\/ul>\n<p dir=\"ltr\"><a href=\"#Airtable\">Click here for our analysis and download patches.<\/a><\/p>\n<p dir=\"ltr\"><img decoding=\"async\" style=\"width: 600px; height: 470px;\" src=\"\/wp-content\/uploads\/2015\/11\/cisa-alerts-2.png\" alt=\"\" \/><\/p>\n<p><a id=\"Airtable\" name=\"Airtable\"><\/a><iframe class=\"airtable-embed\" style=\"background: transparent; border: 1px solid #ccc;\" src=\"https:\/\/airtable.com\/embed\/shrIwrjKEt0I0PO9I?backgroundColor=green&amp;viewControls=on\" width=\"100%\" height=\"533\" frameborder=\"0\"><\/iframe><\/p>\n<h5 dir=\"ltr\"><span style=\"font-size: 14px;\"><strong>Table: February 2021 Security Patches\u00a0<\/strong><\/span><\/h5>\n<p dir=\"ltr\">In today\u2019s ever-increasing threat surfaces, patching cannot be an afterthought. It is essential to implement a risk-based vulnerability strategy and secure your environment from cyber attacks.<\/p>\n<p>&nbsp;<\/p>\n<h3 dir=\"ltr\" style=\"text-align: center;\"><span style=\"font-size: 20px;\"><strong>Concerned about a cyber-attack?<br \/>\nWant to know more about Vulnerability Management as a Service.\u00a0<\/strong><\/span><\/h3>\n<h3 dir=\"ltr\" style=\"text-align: center;\"><span style=\"font-size: 20px;\"><strong><a href=\"https:\/\/cybersecurityworks.com\/get-quote.php\">Talk to us<\/a>.<\/strong><\/span><\/h3>\n","protected":false},"excerpt":{"rendered":"<p>Highlights of February Digest 25 vendors released security patches for 1007 vulnerabilities, including 122 CVEs with known exploits. 10 vulnerabilities that got patched were alerted by CISA. 654 old vulnerabilities have been patched. Microsoft pulls out 56 bugs this month. Weaponized Vulnerabilities We have 122 weaponized vulnerabilities with known exploits. Here is our analysis \u2013 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":14443,"parent":0,"menu_order":0,"template":"","meta":{"content-type":""},"patch_category":[288],"acf":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/patch_watch\/8709"}],"collection":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/patch_watch"}],"about":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/types\/patch_watch"}],"author":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/users\/1"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/media\/14443"}],"wp:attachment":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/media?parent=8709"}],"wp:term":[{"taxonomy":"patch_category","embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/patch_category?post=8709"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}