Thursday 11 February 2021
The impact of this issue announcement is critical. Please act accordingly to rectify the issue, as stated below.
What's affected:
Microsoft Windows components, .NET Framework, Azure IoT, Azure Kubernetes Service, Microsoft Edge for Android, Exchange Server, Office and Office Services and Web Apps, Skype for Business and Lync, and Windows Defender.
What you need to know:
Microsoft’s sought after monthly scheduled batch of security patches fixed at least 56 vulnerabilities in a range of OS and software products, 11 of which are critical. The most notable bug patched is a Win32k elevation of privilege vulnerability (CVE-2021-1732) being exploited in the wild.
Actions to be taken:
Administrators and users are encouraged to check this recap from Zero Day Initiative (ZDI) to check the major vulnerabilities and issues to prioritize updating: https://www.zerodayinitiative.com/blog/2021/2/9/the-february-2022-security-update-review