THE PATCHDAY: 130 vulnerabilities is a record

THE PATCHDAY: 130 vulnerabilities is a record

Berlin, July 17, 2023

On every second Tuesday of the month, Microsoft carries out a so-called Patch Day or Patch Tuesday. This is used to fix important security gaps and takes the form of a software update. Each update has its own KB number – KB stands for Knowledge Base and contains the article number of the update. The changes in the update can be looked up using the KB number. July 12, 2023 was such a patch day.

Because all the media have reported about it more or less extensively, the editors of ki-news-online thought it would be a good idea to point this out a little later, in the hope that by then the laggards would also be convinced that action had to be taken. But even those who have used the day should compare whether they have overlooked something.
However, there are quite a few who have postponed the patch or do not consider it so important. Read the introductory article. He will change her mind.
The summary subsequently written by Microsoft provides further indications that the patch day must be taken seriously.

Summary of Microsoft Patch Day for Windows [Update]
• 11

https://wkw2k.de/summary-of-microsoft-patch-day-for-windows/

The following facts should support our call to action:

– A total of 130 vulnerabilities were registered in Windows, Windows Server, Office, Bing, Exchange Server and other products of the company. 13 are rated as critical, the rest are rated as important by the company.
Currently, 4 Winndows vulnerabilities are being attacked by attackers, while 5 other vulnerabilities are likely to be known.

The PrintNightmare vulnerability (CVE – 2021-34527) has been classified as particularly dangerous. . Apparently the print spooler is affected in all Windows versions.

msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527

Microsoft recommends disabling the Windows Print Spooler on all devices that are not used for printing.

Here is the article on heise.de:
Emergency patch: Microsoft closes PrintNightmare vulnerability in Windows

Microsoft classifies the currently 18 known vulnerabilities into two categories: „Important“ and „Critical“ as shown below:
important
CVE-2021-31979
CVE-2021-33771

critical

CVE-2021-34527

CVE-2021-34448

CVE-2021-34473

CVE-2021-34458

CVSS Score 9.9

CVE-2021-34464

CVE-2021-34522