Security News > 2021 > January > Microsoft Patch Tuesday: 83 Vulnerabilities, 10 Critical, 1 Actively Exploited

Microsoft on Tuesday released the first batch of security patches for 2021 with fixes for 83 documented security vulnerabilities, including a "Critical" bug in the Defender security product that's being actively exploited.

Security experts are urging security response personnel to pay special attention to CVE-2021-1647, which describes a remote code execution flaw in Microsoft Defender, the company's flagship anti-malware product.

The Microsoft Defender update comes with an "Exploitation detected" warning and was shipped via the Microsoft Malware Protection Engine, a utility used to clean-up remnants of known malware attacks.

Of the 83 vulnerabilities documented for January, 10 are rated "Critical," Microsoft's highest severity rating.

The January batch of patches cover serious security holes in Microsoft Office, Microsoft Office Services and Web Apps, Microsoft WIndows, Visual Studio,.

According to Dustin Childs, a research who tracks security updates for ZDI, the major bug in the Microsoft Malware Protection Engine may already be patched as the engine auto-updates as needed.

News URL

http://feedproxy.google.com/~r/Securityweek/~3/q3EAQQ0P6XM/microsoft-patch-tuesday-83-vulnerabilities-10-critical-1-actively-exploited