Four Zero Days Vulnerabilities And 71 Flaws Fixed Via This Month S Patch Tuesday

Today is Microsoft’s October 2021 Patch Tuesday, and with it comes fixes for four zero-day vulnerabilities and a total of 74 flaws.

Redmond officials addressed a lot of problems with this month’s rollout, more than expected.The Microsoft Word Remote Code Execution Vulnerability was treated as a critical one.Also considered critical was the Windows Hyper-V Remote Code Execution Vulnerability.This article contains the complete list of security updates that were issued in October 2021.

Microsoft has fixed 74 vulnerabilities (81 including Microsoft Edge) with today’s update, with three classified as Critical, and 70 as Important, and one as Low.

4 zero-days vulnerabilities fixed, with one actively exploited

These 81 vulnerabilities that are being patched during this month’s rollout are split into categories, as follows:

21 Elevation of Privilege Vulnerabilities
6 Security Feature Bypass Vulnerabilities
20 Remote Code Execution Vulnerabilities
13 Information Disclosure Vulnerabilities
5 Denial of Service Vulnerabilities
9 Spoofing Vulnerabilities

October’s Patch Tuesday includes fixes for four zero-day vulnerabilities, with a Win32k Elevation of Privilege Vulnerability vulnerability known to have been actively exploited in attacks.

Microsoft classifies a vulnerability as a zero-day if it is publicly disclosed or actively exploited with no official fix available.

The actively exploited vulnerability was discovered by Kaspersky’s Boris Larin (oct0xor) and allows malware or a threat actor to gain elevated privileges on a Windows device.

CVE-2021-40449 – Win32k Elevation of Privilege Vulnerability

Kaspersky disclosed that the vulnerability was used by threat actors in “widespread espionage campaigns against IT companies, military/defense contractors, and diplomatic entities.”

IronHusky APT uses zero-day on Windows servers #MysterySnail #PatchTuesday #itw0dayshttps://t.co/QnhtJyNfdD

— Boris Larin (@oct0xor) October 12, 2021

Some PC issues are hard to tackle, especially when it comes to corrupted repositories or missing Windows files. If you are having troubles fixing an error, your system may be partially broken. We recommend installing Restoro, a tool that will scan your machine and identify what the fault is.Click here to download and start repairing.

Expert tip:

Other companies also released important updates

Adobe’s October security updates were released for various applications.
Android’s October security updates were released last week.
Apache released HTTP Web Server 2.4.51 to fix an incompete patch for an actively exploited vulnerability.
Apple released security updates for iOS and iPadOS yesterday that an actively exploited zero-day vulnerability.
Cisco released security updates for numerous products this month.
SAP released its October 2021 security updates.
VMware released a security update for VMware vRealize Operations.

This month’s security updates

Below is the complete list of resolved vulnerabilities and released advisories in the October 2021 Patch Tuesday updates. To access the full description of each vulnerability and the systems that it affects, you can view the full report here.

Have you been struggling with any of the errors and bugs listed in this article? Let us know in the comments section below.

If the advices above haven’t solved your issue, your PC may experience deeper Windows problems. We recommend downloading this PC Repair tool (rated Great on TrustPilot.com) to easily address them. After installation, simply click the Start Scan button and then press on Repair All.

Still having issues? Fix them with this tool:

patch tuesday

Email *

Commenting as . Not you?

Comment

4 zero-days vulnerabilities fixed, with one actively exploited#

Other companies also released important updates#

This month’s security updates#

4 zero-days vulnerabilities fixed, with one actively exploited

Other companies also released important updates

This month’s security updates