{"id":8596,"date":"2021-09-08T04:46:01","date_gmt":"2021-09-08T11:46:01","guid":{"rendered":"https:\/\/webdev.securin.xyz\/?post_type=patch_watch&#038;p=8596"},"modified":"2023-03-07T15:25:16","modified_gmt":"2023-03-07T22:25:16","slug":"august-15-patch-watch-security-updates","status":"publish","type":"patch_watch","link":"https:\/\/10.42.32.162\/patch_watch\/august-15-patch-watch-security-updates\/","title":{"rendered":"August 15: Patch Watch &#038; Security Updates"},"content":{"rendered":"<h2 dir=\"ltr\">Highlights of Patch Watch Issue 17<\/h2>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">31 vendors released security patches for 771 vulnerabilities, including 122 CVEs with known exploits.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">275 old vulnerabilities have been patched.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">40 vulnerabilities that got patched this month are red-flagged by CISA.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">Microsoft fixed 44 vulnerabilities in August.<\/p>\n<\/li>\n<\/ul>\n<h2 dir=\"ltr\"><img decoding=\"async\" class=\"aligncenter\" style=\"width: 800px; height: 354px;\" src=\"\/wp-content\/uploads\/2015\/11\/patch-watch-2-12.png\" alt=\"\" \/><\/h2>\n<h2 dir=\"ltr\">Weaponized Vulnerabilities<\/h2>\n<p dir=\"ltr\">We have 122 vulnerabilities that are known exploits. Here is our analysis \u2013<\/p>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">5 CVEs are associated with ransomware strains that include Maze, Clop, and Sodinokibi.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">5 CVEs are linked to APT 1, APT 10,\u00a0 TA505,\u00a0 FIN11, Carbanak, and Pinchy Spider.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">9 Malware groups (OceanSalt, Auriga, Bangat, BISCUIT, MAPIGET, TARSIP, SEASALT,\u00a0 KURTON, and HELAUTO) are correlated to 5 CVEs.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">18 CVEs are RCE bugs.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">19 CVEs have Privilege Escalation capabilities.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">24 CVEs are linked to Denial of Service attacks.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">6 CVEs have Cross-Site Scripting possibilities.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">29 CVEs are rated critical and 53 are high severity.<\/p>\n<\/li>\n<\/ul>\n<p dir=\"ltr\">\n<img decoding=\"async\" class=\"aligncenter\" style=\"width: 550px; height: 338px;\" src=\"\/wp-content\/uploads\/2015\/11\/patch-watch-1-10.png\" alt=\"\" \/><\/p>\n<h2 dir=\"ltr\">Securin Alerts<\/h2>\n<p dir=\"ltr\">The vulnerabilities <a href=\"https:\/\/cybersecurityworks.com\/blog\/vulnerabilities\/top-25-exploited-vulnerabilities-by-chinese-sponsored-hackers.html\">CVE-2020-1472<\/a>, <a href=\"https:\/\/cybersecurityworks.com\/blog\/vulnerabilities\/how-to-detect-cve-2021-34527.html\">CVE-2021-34527<\/a>, <a href=\"https:\/\/cybersecurityworks.com\/blog\/vulnerabilities\/google-trends-most-searched-top-10-vulnerabilities-in-2020.html\">CVE-2020-0549<\/a>, <a href=\"https:\/\/cybersecurityworks.com\/blog\/vulnerabilities\/google-trends-most-searched-top-10-vulnerabilities-in-2020.html\">CVE-2020-2555,<\/a> <a href=\"https:\/\/cybersecurityworks.com\/blog\/cyber-risk\/could-googles-most-searched-top-10-vulnerabilities-in-2020-be-key-attack-indicators.html\">CVE-2020-13935<\/a>, and <a href=\"https:\/\/cybersecurityworks.com\/blog\/cyber-risk\/could-googles-most-searched-top-10-vulnerabilities-in-2020-be-key-attack-indicators.html\">CVE-2020-9484<\/a> that got patched earlier this month have been pointed out in our Cyber Risk Series. \u00a0We strongly recommend applying the recent security updates for all these vulnerabilities on high priority.<\/p>\n<h2><a id=\"Old CVEs\" name=\"Old CVEs\"><\/a>Old Vulnerabilities<\/h2>\n<p dir=\"ltr\">275 Old vulnerabilities have been fixed by 10 vendors, ranging from the year 2002 to 2020.<\/p>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">5 CVEs are associated with ransomware strains that include Maze, Clop, and Sodinokibi.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">5 CVEs are linked to APT 1, APT 10,\u00a0 TA505,\u00a0 FIN11, Carbanak, and Pinchy Spider.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">9 Malware groups (OceanSalt, Auriga, Bangat, BISCUIT, MAPIGET, TARSIP, SEASALT,\u00a0 KURTON, and\u00a0 HELAUTO) are correlated to 5 CVEs.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">15 CVEs are featured by CISA.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">Of these, 51 CVEs have known exploits.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">6 CVEs with Privilege Escalation.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">5 CVEs are Remote Code Execution bugs.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">38 CVEs are rated critical and 126 are of high severity.<\/p>\n<\/li>\n<\/ul>\n<p><img decoding=\"async\" class=\"aligncenter\" style=\"width: 550px; height: 351px;\" src=\"\/wp-content\/uploads\/2015\/11\/patch-watch-2-13.png\" alt=\"\" \/><\/p>\n<h2 dir=\"ltr\"><strong><a id=\"Microsoft CVEs\" name=\"Microsoft CVEs\"><\/a>Microsoft August Patches 2021<\/strong><\/h2>\n<p>Microsoft plugged 44 vulnerabilities including 3 zero-days. Of these 44 CVEs, \u00a0<a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2021-36942\">CVE-2021-36942<\/a> <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2021-36942\">(PetitPotam)<\/a> in Windows Update Medic Service with Elevation of Privilege have PoC released in public forums and remain vulnerable to active exploitation. We recommend Microsoft users to address the\u00a0 NTLM problem as top priority.<\/p>\n<p dir=\"ltr\">\n<h2 dir=\"ltr\"><a id=\"CISA\" name=\"CISA\"><\/a>CISA Alerts<\/h2>\n<p dir=\"ltr\">CISA has issued alerts for 40 vulnerabilities, including 1 publicly known exploit.<\/p>\n<ul>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">3 CVEs are associated with LockFile, Magniber and ViceSociety Ransomware.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">CVEs are classified as Remote Code Execution bugs.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">1 CVEs with Privilege Escalation.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">9 CVEs are rated critical and 7 are of high severity.<\/p>\n<\/li>\n<\/ul>\n<p><img decoding=\"async\" class=\"aligncenter\" style=\"width: 550px; height: 459px;\" src=\"\/wp-content\/uploads\/2015\/11\/patch-watch-4-6.png\" alt=\"\" \/><\/p>\n<p><a id=\"Airtable\" name=\"Airtable\"><\/a><iframe class=\"airtable-embed\" style=\"background: transparent; border: 1px solid #ccc;\" src=\"https:\/\/airtable.com\/embed\/shrnADbCfaiunENJ2?backgroundColor=purple&amp;viewControls=on\" width=\"100%\" height=\"533\" frameborder=\"0\"><\/iframe><\/p>\n<p dir=\"ltr\"><strong>Table: August Security Patches 2021<\/strong><\/p>\n<p dir=\"ltr\">With ransoms being paid out on a regular basis, hackers have recognized how lucrative these attacks can be. We discovered that ransomware, malware, or APT associations exist in 24 percent of all fixed vulnerabilities, with the number of organizations targeted by threat groups rising rapidly. Therefore, it is advised to have a robust cybersecurity program in place, with security patches being applied aggressively on a daily basis, to be able to stave off an attack.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Highlights of Patch Watch Issue 17 31 vendors released security patches for 771 vulnerabilities, including 122 CVEs with known exploits. 275 old vulnerabilities have been patched. 40 vulnerabilities that got patched this month are red-flagged by CISA. Microsoft fixed 44 vulnerabilities in August. Weaponized Vulnerabilities We have 122 vulnerabilities that are known exploits. Here is [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":14453,"parent":0,"menu_order":0,"template":"","meta":{"content-type":""},"patch_category":[],"acf":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/patch_watch\/8596"}],"collection":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/patch_watch"}],"about":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/types\/patch_watch"}],"author":[{"embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/users\/1"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/media\/14453"}],"wp:attachment":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/media?parent=8596"}],"wp:term":[{"taxonomy":"patch_category","embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/patch_category?post=8596"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}