February 2021 Patch Tuesday Index

Don't miss a single vulnerability this Patch Tuesday. The latest patches and updates from Microsoft and multiple third-party applications can be found in February's Patch Tuesday Index below.

February's Patch Tuesday brings 56 new vulnerabilities, including 11 critical updates, from Microsoft. While the overall number of vulnerabilities fixed this month is relatively low, there is a zero-day, CVE-2021-1732, being exploited in the wild. It's also worth noting that all 11 of the Critical rated updates fix Remote Code Execution vulnerabilities.

Adobe has released fixes for numerous vulnerabilities spanning across Dreamweaver, Illustrator, Animate, Photoshop, Magento, Acrobat, and Reader. Adobe has received a report that CVE-2021-21017 has been exploited in the wild in limited attacks targeting Adobe Reader users on Windows.

Automox Patch Tuesday expert Nicholas Colyer will be breaking down all of February's Patch Tuesday releases tomorrow, February 10, 2021. Register here so you can prioritize the patches for your environment and ask any question you may have.

Updated Live. Last Update 1:05 PM EST February 09, 2021.

Mozilla Firefox
Product	Title	Identifier	Severity
Firefox & Firefox ESR	1 security vulnerability fixed in Firefox and Firefox ESR	MFSA 2021-06	Critical
Adobe
Product	Title	Identifier	Severity
Adobe Acrobat & Reader	23 Security Vulnerabilities fixed in Adobe Acrobat & Reader	APSB21-09	Critical
Adobe Magento	18 Security Vulnerabilities fixed in Adobe Magento	APSB21-08	High
Adobe Photoshop	5 Security Vulnerabilities fixed in Adobe Photoshop	APSB21-10	Critical
Adobe Animate	1 Security Vulnerability fixed in Adobe Animate	APSB21-11	Critical
Adobe Illustrate	2 Security Vulnerabilities fixed in Adobe Illustrate	APSB21-12	Critical
Adobe Dreamweaver	1 Security Vulnerability fixed in Adobe Dreamweaver	APSB21-13	High
Apple
Product	Title	Identifier	Severity
macOS Big Sur 11.2	Security Update 2021-001 Catalina, Security Update 2021-001 Mojave	HT212147	N/A
Safari Browser	Safari 14.0.3	HT212152	N/A
Microsoft
Product	Title	Identifier	Severity
Role: Windows Fax Service	Windows Fax Service Remote Code Execution Vulnerability	CVE-2021-1722	Critical
Windows TCP/IP	Windows TCP/IP Remote Code Execution Vulnerability	CVE-2021-24074	Critical
Role: Windows Fax Service	Windows Fax Service Remote Code Execution Vulnerability	CVE-2021-24077	Critical
Role: DNS Server	Windows DNS Server Remote Code Execution Vulnerability	CVE-2021-24078	Critical
Microsoft Windows Codecs Library	Microsoft Windows Codecs Library Remote Code Execution Vulnerability	CVE-2021-24081	Critical
Windows Print Spooler Components	Windows Local Spooler Remote Code Execution Vulnerability	CVE-2021-24088	Critical
Microsoft Windows Codecs Library	Windows Camera Codec Pack Remote Code Execution Vulnerability	CVE-2021-24091	Critical
Microsoft Graphics Component	Windows Graphics Component Remote Code Execution Vulnerability	CVE-2021-24093	Critical
Windows TCP/IP	Windows TCP/IP Remote Code Execution Vulnerability	CVE-2021-24094	Critical
.NET Core	.NET Core Remote Code Execution Vulnerability	CVE-2021-26701	Critical
.NET Core	.NET Core Remote Code Execution Vulnerability	CVE-2021-24112	Critical
Windows Hyper-V	Hyper-V Denial of Service Vulnerability	CVE-2021-1692	High
Microsoft Teams	Microsoft Teams iOS Information Disclosure Vulnerability	CVE-2021-24114	High
Visual Studio Code	Visual Studio Code npm-script Extension Remote Code Execution Vulnerability	CVE-2021-26700	High
Windows Kernel	Windows Win32k Elevation of Privilege Vulnerability	CVE-2021-1732	High
ASP.NET core and .NET core	.NET Core and Visual Studio Denial of Service Vulnerability	CVE-2021-1721	High
Windows Installer	Windows Installer Elevation of Privilege Vulnerability	CVE-2021-1727	High
SysInternals	Sysinternals PsExec Elevation of Privilege Vulnerability	CVE-2021-1733	High
Windows Console Driver	Windows Console Driver Denial of Service Vulnerability	CVE-2021-24098	High
Windows DirectX	Windows DirectX Information Disclosure Vulnerability	CVE-2021-24106	High
Visual Studio	Visual Studio Code Remote Code Execution Vulnerability	CVE-2021-1639	High
Windows Kernel	Windows Win32k Elevation of Privilege Vulnerability	CVE-2021-1698	High
Microsoft Dynamics	Microsoft Dynamics Business Central Cross-site Scripting Vulnerability	CVE-2021-1724	High
Microsoft Office SharePoint	Microsoft SharePoint Spoofing Vulnerability	CVE-2021-1726	High
System Center	System Center Operations Manager Elevation of Privilege Vulnerability	CVE-2021-1728	High
Microsoft Exchange Server	Microsoft Exchange Server Spoofing Vulnerability	CVE-2021-1730	High
Windows PFX Encryption	PFX Encryption Security Feature Bypass Vulnerability	CVE-2021-1731	High
Microsoft RPC	Windows Remote Procedure Call Information Disclosure Vulnerability	CVE-2021-1734	High
Microsoft Office SharePoint	Microsoft SharePoint Remote Code Execution Vulnerability	CVE-2021-24066	High
Microsoft Office Excel	Microsoft Excel Remote Code Execution Vulnerability	CVE-2021-24067	High
Microsoft Office Excel	Microsoft Excel Remote Code Execution Vulnerability	CVE-2021-24068	High
Microsoft Office Excel	Microsoft Excel Remote Code Execution Vulnerability	CVE-2021-24069	High
Microsoft Office Excel	Microsoft Excel Remote Code Execution Vulnerability	CVE-2021-24070	High
Microsoft Office SharePoint	Microsoft SharePoint Information Disclosure Vulnerability	CVE-2021-24071	High
Microsoft Office SharePoint	Microsoft SharePoint Server Remote Code Execution Vulnerability	CVE-2021-24072	High
Skype for Business	Skype for Business and Lync Spoofing Vulnerability	CVE-2021-24073	High
Windows Network File System	Windows Network File System Denial of Service Vulnerability	CVE-2021-24075	High
Role: Hyper-V	Microsoft Windows VMSwitch Information Disclosure Vulnerability	CVE-2021-24076	High
Windows Backup Engine	Windows Backup Engine Information Disclosure Vulnerability	CVE-2021-24079	High
Windows PowerShell	Microsoft.PowerShell.Utility Module WDAC Security Feature Bypass Vulnerability	CVE-2021-24082	High
Windows Address Book	Windows Address Book Remote Code Execution Vulnerability	CVE-2021-24083	High
Windows Mobile Device Management	Windows Mobile Device Management Information Disclosure Vulnerability	CVE-2021-24084	High
Microsoft Exchange Server	Microsoft Exchange Server Spoofing Vulnerability	CVE-2021-24085	High
Windows TCP/IP	Windows TCP/IP Denial of Service Vulnerability	CVE-2021-24086	High
Azure IoT	Azure IoT CLI extension Elevation of Privilege Vulnerability	CVE-2021-24087	High
Windows Defender	Microsoft Defender Elevation of Privilege Vulnerability	CVE-2021-24092	High
Windows Kernel	Windows Kernel Elevation of Privilege Vulnerability	CVE-2021-24096	High
Skype for Business	Skype for Business Denial of Service Vulnerability	CVE-2021-24099	High
Microsoft Edge for Android	Microsoft Edge for Android Information Disclosure Vulnerability	CVE-2021-24100	High
Microsoft Dynamics	Microsoft Dataverse Information Disclosure Vulnerability	CVE-2021-24101	High
Windows Event Tracing	Windows Event Tracing Elevation of Privilege Vulnerability	CVE-2021-24102	High
Windows Event Tracing	Windows Event Tracing Elevation of Privilege Vulnerability	CVE-2021-24103	High
Developer Tools	Package Managers Configurations Remote Code Execution Vulnerability	CVE-2021-24105	High
.NET Framework	.NET Framework Denial of Service Vulnerability	CVE-2021-24111	High
Windows PKU2U	Windows PKU2U Elevation of Privilege Vulnerability	CVE-2021-25195	High
Windows Trust Verification API	Windows Trust Verification API Denial of Service Vulnerability	CVE-2021-24080	Medium
Microsoft Azure Kubernetes Service	Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability	CVE-2021-24109	Medium

February 2021 Patch Tuesday Index

Dive deeper into this topic