{"id":8724,"date":"2021-02-03T10:40:21","date_gmt":"2021-02-03T17:40:21","guid":{"rendered":"https:\/\/webdev.securin.xyz\/?post_type=patch_watch&p=8724"},"modified":"2023-03-03T14:27:53","modified_gmt":"2023-03-03T21:27:53","slug":"jan-13-csw-patch-watch-security-updates","status":"publish","type":"patch_watch","link":"https:\/\/10.42.32.162\/patch_watch\/jan-13-csw-patch-watch-security-updates\/","title":{"rendered":"Jan 13: CSW Patch Watch & Security Updates"},"content":{"rendered":"
<\/p>\n
13 vendors, including Apple, Cisco, Adobe, Chrome, Mozilla, IBM, Microsoft, Checkpoint, RedHat, and others, have released patches and updates for 487 vulnerabilities.<\/span><\/span><\/a><\/p>\n<\/li>\n Microsoft has pushed patches for 83 vulnerabilities.<\/span><\/span><\/a><\/p>\n<\/li>\n CISA issued a warning alert for 25 vulnerabilities.<\/span><\/span><\/a><\/p>\n<\/li>\n 358 Old vulnerabilities have been patched.<\/span><\/span><\/a><\/p>\n<\/li>\n<\/ul>\n 2 CVEs are associated with APT Groups<\/span><\/span><\/p>\n<\/li>\n 5 CVEs are associated with 5 different Ransomware families.<\/span><\/span><\/p>\n<\/li>\n 9 CVEs have known exploits<\/span><\/span><\/p>\n<\/li>\n 478 CVEs are yet to be weaponized<\/span><\/span><\/p>\n<\/li>\n<\/ul>\n <\/span><\/span><\/p>\n CVE-2021-1647 is a zero-day exploit with RCE capabilities.<\/span><\/span><\/p>\n<\/li>\n This vulnerability existed within the Microsoft Malware Protection Engine version 1.1.17700.4 or later, a core component of Microsoft Defender that addresses malicious software.<\/span><\/span><\/p>\n<\/li>\n<\/ul>\n<\/a>We analyzed 487 vulnerabilities and found that \u2013<\/span><\/span><\/strong><\/h3>\n
\n
<\/a>Microsoft rolled out 83 security patches for January.<\/span><\/span><\/strong><\/h3>\n
\n
10 CVEs are rated critical, and 73 are high.<\/span><\/span><\/h3>\n<\/li>\n