Monthly Archive: September 2021

Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36967

Windows Subsystem for Linux Elevation of Privilege Vulnerability Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36966

Windows WLAN AutoConfig Service Remote Code Execution Vulnerability Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36965

Windows Event Tracing Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38630. Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36964

Windows Common Log File System Driver Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-36955, CVE-2021-38633. Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36963

Windows Installer Information Disclosure Vulnerability Date published : 2021-09-15 https://www.zerodayinitiative.com/advisories/ZDI-21-1103/ https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36962

Windows Installer Denial of Service Vulnerability Date published : 2021-09-15 https://www.zerodayinitiative.com/advisories/ZDI-21-1078/ https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36961

Windows SMB Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-36972. Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36960

Windows Authenticode Spoofing Vulnerability Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36959

Azure Sphere Information Disclosure Vulnerability Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36956

Windows Common Log File System Driver Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-36963, CVE-2021-38633. Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36955

Windows Bind Filter Driver Elevation of Privilege Vulnerability Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36954

Visual Studio Remote Code Execution Vulnerability Date published : 2021-09-15 https://www.zerodayinitiative.com/advisories/ZDI-21-1076/ https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36952

The SAP NetWeaver Portal, versions – 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, component Iviews Editor contains a Server-Side Request Forgery (SSRF) vulnerability which allows an unauthenticated attacker to craft a malicious URL which...