Blog

Microsoft March 2021 Patch Tuesday, (Tue, Mar 9th)

This month we got patches for 122 vulnerabilities. Of these, 14 are critical, 5 are being exploited and 2 were previously disclosed. 

The highlight for this month goes to the Microsoft Exchange Server vulnerabilities that are being exploited and for which Microsoft has made available the emergency patches on March 2. If you have this software in your environment, especially if the service is exposed to the internet, and did not apply the patches, in addition to apply the patches, it is imperative that you check if your system could have been already compromised. Johannes published a diary summarizing the vulnerabilities and giving advices on how to check for evidence of compromise.

In addition to the 4 Microsoft Exchange Server vulnerabilities, there is a fifth vulnerability being exploited which have been previously disclosed. This is a RCE affecting Microsoft Edge and Internet Explorer 11 (CVE-2021-26411) on multiple Windows versions. According to the vulnerability advisory, to exploit this vulnerability, an attacker would have to convince a user to access a malicious website, like in a phishing scenario. The exploit is publicly disclosed, and exploitations were already detected. 

The highest CVSS score this month (9.90) was given to the Windows Hyper-V Remote Code Execution Vulnerability (CVE-2021-26867). The vulnerability advisory says that any Hyper-V client which is configured to use the Plan 9 file system could be vulnerable. An authenticated attacker who successfully exploited this vulnerability on a Hyper-V client could cause code to execute on the Hyper-V server.

And for the second month in a row, there is a critical RCE vulnerability affecting Windows DNS Server (CVE-2021-26897) with a CVSS of 9.80. According to the advisory, the vulnerability affects any DNS Server – being it a standalone DNS Primary Authoritative Server or a DNS Server integrated with Active Directory. It also informs that to be vulnerable, a DNS server would need to have dynamic updates enabled. 

See my dashboard for a more detailed breakout: https://patchtuesdaydashboard.com

Description
CVE Disclosed Exploited Exploitability (old versions) current version Severity CVSS Base (AVG) CVSS Temporal (AVG)
Application Virtualization Remote Code Execution Vulnerability
%%cve:2021-26890%% No No Less Likely Less Likely Important 7.8 6.8
Azure Sphere Unsigned Code Execution Vulnerability
%%cve:2021-27074%% No No Less Likely Less Likely Critical 6.2 5.6
%%cve:2021-27080%% No No Less Likely Less Likely Critical 9.3 9.3
Azure Virtual Machine Information Disclosure Vulnerability
%%cve:2021-27075%% No No Less Likely Less Likely Important 6.8 6.1
Chromium CVE-2020-27844: Heap buffer overflow in OpenJPEG
%%cve:2020-27844%% No No    
Chromium CVE-2021-21159: Heap buffer overflow in TabStrip
%%cve:2021-21159%% No No    
Chromium CVE-2021-21160: Heap buffer overflow in WebAudio
%%cve:2021-21160%% No No    
Chromium CVE-2021-21161: Heap buffer overflow in TabStrip
%%cve:2021-21161%% No No    
Chromium CVE-2021-21162: Use after free in WebRTC
%%cve:2021-21162%% No No    
Chromium CVE-2021-21163: Insufficient data validation in Reader Mode
%%cve:2021-21163%% No No    
Chromium CVE-2021-21164: Insufficient data validation in Chrome for iOS
%%cve:2021-21164%% No No    
Chromium CVE-2021-21165: Object lifecycle issue in audio
%%cve:2021-21165%% No No    
Chromium CVE-2021-21166: Object lifecycle issue in audio
%%cve:2021-21166%% No No    
Chromium CVE-2021-21167: Use after free in bookmarks
%%cve:2021-21167%% No No    
Chromium CVE-2021-21168: Insufficient policy enforcement in appcache
%%cve:2021-21168%% No No    
Chromium CVE-2021-21169: Out of bounds memory access in V8
%%cve:2021-21169%% No No    
Chromium CVE-2021-21170: Incorrect security UI in Loader
%%cve:2021-21170%% No No    
Chromium CVE-2021-21171: Incorrect security UI in TabStrip and Navigation
%%cve:2021-21171%% No No    
Chromium CVE-2021-21172: Insufficient policy enforcement in File System API
%%cve:2021-21172%% No No    
Chromium CVE-2021-21173: Side-channel information leakage in Network Internals
%%cve:2021-21173%% No No    
Chromium CVE-2021-21174: Inappropriate implementation in Referrer
%%cve:2021-21174%% No No    
Chromium CVE-2021-21175: Inappropriate implementation in Site isolation
%%cve:2021-21175%% No No    
Chromium CVE-2021-21176: Inappropriate implementation in full screen mode
%%cve:2021-21176%% No No    
Chromium CVE-2021-21177: Insufficient policy enforcement in Autofill
%%cve:2021-21177%% No No    
Chromium CVE-2021-21178 : Inappropriate implementation in Compositing
%%cve:2021-21178%% No No    
Chromium CVE-2021-21179: Use after free in Network Internals
%%cve:2021-21179%% No No    
Chromium CVE-2021-21180: Use after free in tab search
%%cve:2021-21180%% No No    
Chromium CVE-2021-21181: Side-channel information leakage in autofill
%%cve:2021-21181%% No No    
Chromium CVE-2021-21182: Insufficient policy enforcement in navigations
%%cve:2021-21182%% No No    
Chromium CVE-2021-21183: Inappropriate implementation in performance APIs
%%cve:2021-21183%% No No    
Chromium CVE-2021-21184: Inappropriate implementation in performance APIs
%%cve:2021-21184%% No No    
Chromium CVE-2021-21185: Insufficient policy enforcement in extensions
%%cve:2021-21185%% No No    
Chromium CVE-2021-21186: Insufficient policy enforcement in QR scanning
%%cve:2021-21186%% No No    
Chromium CVE-2021-21187: Insufficient data validation in URL formatting
%%cve:2021-21187%% No No    
Chromium CVE-2021-21188: Use after free in Blink
%%cve:2021-21188%% No No    
Chromium CVE-2021-21189: Insufficient policy enforcement in payments
%%cve:2021-21189%% No No    
Chromium CVE-2021-21190 : Uninitialized Use in PDFium
%%cve:2021-21190%% No No    
DirectX Elevation of Privilege Vulnerability
%%cve:2021-24095%% No No More Likely More Likely Important 7.0 6.1
Git for Visual Studio Remote Code Execution Vulnerability
%%cve:2021-21300%% No No Less Likely Less Likely Critical 8.8 7.7
HEVC Video Extensions Remote Code Execution Vulnerability
%%cve:2021-24089%% No No Less Likely Less Likely Critical 7.8 6.8
%%cve:2021-24110%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-26902%% No No Less Likely Less Likely Critical 7.8 6.8
%%cve:2021-27047%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-27048%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-27049%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-27050%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-27051%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-27061%% No No Less Likely Less Likely Critical 7.8 6.8
%%cve:2021-27062%% No No Less Likely Less Likely Important 7.8 6.8
Internet Explorer Memory Corruption Vulnerability
%%cve:2021-26411%% Yes Yes Detected Detected Critical 8.8 7.9
Internet Explorer Remote Code Execution Vulnerability
%%cve:2021-27085%% No No Less Likely Less Likely Important 8.8 7.9
Microsoft Excel Remote Code Execution Vulnerability
%%cve:2021-27053%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-27054%% No No Less Likely Less Likely Important 7.8 6.8
Microsoft Exchange Server Remote Code Execution Vulnerability
%%cve:2021-26412%% No No Less Likely Less Likely Critical 9.1 8.2
%%cve:2021-26854%% No No Less Likely Less Likely Important 6.6 5.8
%%cve:2021-26855%% No Yes Detected Detected Critical 9.1 8.4
%%cve:2021-26857%% No Yes More Likely Detected Critical 7.8 7.2
%%cve:2021-26858%% No Yes Detected Detected Important 7.8 7.2
%%cve:2021-27065%% No Yes Detected Detected Critical 7.8 7.2
%%cve:2021-27078%% No No Less Likely Less Likely Important 9.1 8.2
Microsoft Office ClickToRun Remote Code Execution Vulnerability
%%cve:2021-27058%% No No Less Likely Less Likely Important 7.8 6.8
Microsoft Office Remote Code Execution Vulnerability
%%cve:2021-24108%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-27057%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-27059%% No No Less Likely Less Likely Important 7.6 6.6
Microsoft Power BI Information Disclosure Vulnerability
%%cve:2021-26859%% No No Less Likely Less Likely Important 7.7 6.7
Microsoft PowerPoint Remote Code Execution Vulnerability
%%cve:2021-27056%% No No Less Likely Less Likely Important 7.8 6.8
Microsoft SharePoint Server Information Disclosure Vulnerability
%%cve:2021-27052%% No No Less Likely Less Likely Important 5.3 4.8
Microsoft SharePoint Server Remote Code Execution Vulnerability
%%cve:2021-27076%% No No More Likely More Likely Important 8.8 7.7
Microsoft SharePoint Spoofing Vulnerability
%%cve:2021-24104%% No No Less Likely Less Likely Important 4.6 4.2
Microsoft Visio Security Feature Bypass Vulnerability
%%cve:2021-27055%% No No Less Likely Less Likely Important 7.0 6.1
Microsoft Windows Folder Redirection Elevation of Privilege Vulnerability
%%cve:2021-26887%% No No Less Likely Less Likely Important 7.8 6.8
Microsoft Windows Media Foundation Remote Code Execution Vulnerability
%%cve:2021-26881%% No No Less Likely Less Likely Important 7.5 6.5
OpenType Font Parsing Remote Code Execution Vulnerability
%%cve:2021-26876%% No No Less Likely Less Likely Critical 8.8 7.7
Quantum Development Kit for Visual Studio Code Remote Code Execution Vulnerability
%%cve:2021-27082%% No No Important 7.8 6.8
Remote Access API Elevation of Privilege Vulnerability
%%cve:2021-26882%% No No Less Likely Less Likely Important 7.8 6.8
Remote Development Extension for Visual Studio Code Remote Code Execution Vulnerability
%%cve:2021-27083%% No No Less Likely Less Likely Important 7.8 6.8
Storage Spaces Controller Elevation of Privilege Vulnerability
%%cve:2021-26880%% No No Less Likely Less Likely Important 7.8 6.8
User Profile Service Denial of Service Vulnerability
%%cve:2021-26886%% No No Less Likely Less Likely Important 5.5 4.8
Visual Studio Code ESLint Extension Remote Code Execution Vulnerability
%%cve:2021-27081%% No No Less Likely Less Likely Important 7.8 6.8
Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability
%%cve:2021-27084%% No No Less Likely Less Likely Important    
Visual Studio Code Remote Code Execution Vulnerability
%%cve:2021-27060%% No No Less Likely Less Likely Important 7.8 6.8
Windows 10 Update Assistant Elevation of Privilege Vulnerability
%%cve:2021-27070%% No No Less Likely Less Likely Important 7.3 6.4
Windows ActiveX Installer Service Information Disclosure Vulnerability
%%cve:2021-26869%% No No Less Likely Less Likely Important 5.5 4.8
Windows Admin Center Security Feature Bypass Vulnerability
%%cve:2021-27066%% No No Less Likely Less Likely Important 4.3 3.8
Windows App-V Overlay Filter Elevation of Privilege Vulnerability
%%cve:2021-26860%% No No Less Likely Less Likely Important 7.8 6.8
Windows Container Execution Agent Elevation of Privilege Vulnerability
%%cve:2021-26865%% No No Less Likely Less Likely Important 8.8 7.7
%%cve:2021-26891%% No No Less Likely Less Likely Important 7.8 6.8
Windows DNS Server Denial of Service Vulnerability
%%cve:2021-26896%% No No Less Likely Less Likely Important 7.5 6.5
%%cve:2021-27063%% No No Less Likely Less Likely Important 7.5 6.5
Windows DNS Server Remote Code Execution Vulnerability
%%cve:2021-26877%% No No More Likely More Likely Important 9.8 8.5
%%cve:2021-26893%% No No Less Likely Less Likely Important 9.8 8.5
%%cve:2021-26894%% No No Less Likely Less Likely Important 9.8 8.5
%%cve:2021-26895%% No No Less Likely Less Likely Important 9.8 8.5
%%cve:2021-26897%% No No More Likely More Likely Critical 9.8 8.5
Windows Error Reporting Elevation of Privilege Vulnerability
%%cve:2021-24090%% No No Less Likely Less Likely Important 7.8 6.8
Windows Event Tracing Elevation of Privilege Vulnerability
%%cve:2021-26872%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-26898%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-26901%% No No Less Likely Less Likely Important 7.8 6.8
Windows Event Tracing Information Disclosure Vulnerability
%%cve:2021-24107%% No No Less Likely Less Likely Important 5.5 4.8
Windows Extensible Firmware Interface Security Feature Bypass Vulnerability
%%cve:2021-26892%% No No Less Likely Less Likely Important 6.2 5.6
Windows Graphics Component Elevation of Privilege Vulnerability
%%cve:2021-26868%% No No More Likely More Likely Important 7.8 6.8
Windows Graphics Component Remote Code Execution Vulnerability
%%cve:2021-26861%% No No Less Likely Less Likely Important 7.8 6.8
Windows Hyper-V Remote Code Execution Vulnerability
%%cve:2021-26867%% No No Less Likely Less Likely Critical 9.9 8.6
Windows Installer Elevation of Privilege Vulnerability
%%cve:2021-26862%% No No Less Likely Less Likely Important 6.3 5.5
Windows Media Photo Codec Information Disclosure Vulnerability
%%cve:2021-26884%% No No Less Likely Less Likely Important 5.5 4.8
Windows NAT Denial of Service Vulnerability
%%cve:2021-26879%% No No Less Likely Less Likely Important 7.5 6.5
Windows Overlay Filter Elevation of Privilege Vulnerability
%%cve:2021-26874%% No No Less Likely Less Likely Important 7.8 6.8
Windows Print Spooler Elevation of Privilege Vulnerability
%%cve:2021-1640%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-26878%% No No Less Likely Less Likely Important 7.8 6.8
Windows Projected File System Elevation of Privilege Vulnerability
%%cve:2021-26870%% No No Less Likely Less Likely Important 7.8 6.8
Windows UPnP Device Host Elevation of Privilege Vulnerability
%%cve:2021-26899%% No No Less Likely Less Likely Important 7.8 6.8
Windows Update Service Elevation of Privilege Vulnerability
%%cve:2021-26866%% No No Less Likely Less Likely Important 7.1 6.2
Windows Update Stack Elevation of Privilege Vulnerability
%%cve:2021-26889%% No No Less Likely Less Likely Important 7.1 6.2
Windows Update Stack Setup Elevation of Privilege Vulnerability
%%cve:2021-1729%% No No Less Likely Less Likely Important 7.1 6.2
Windows User Profile Service Elevation of Privilege Vulnerability
%%cve:2021-26873%% No No Less Likely Less Likely Important 7.0 6.1
Windows Virtual Registry Provider Elevation of Privilege Vulnerability
%%cve:2021-26864%% No No Less Likely Less Likely Important 8.4 7.3
Windows WalletService Elevation of Privilege Vulnerability
%%cve:2021-26871%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-26885%% No No Less Likely Less Likely Important 7.8 6.8
Windows Win32k Elevation of Privilege Vulnerability
%%cve:2021-27077%% Yes No Less Likely Less Likely Important 7.8 7.0
%%cve:2021-26863%% No No More Likely More Likely Important 7.0 6.1
%%cve:2021-26875%% No No Less Likely Less Likely Important 7.8 6.8
%%cve:2021-26900%% No No Less Likely Less Likely Important 7.8 6.8


Renato Marinho
Morphus Labs| LinkedIn|Twitter

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Reposted from SANS. View original.

Posted in: SANS

Leave a Comment (0) ↓