Microsoft's February 2022 Patch Tuesday Addresses 70 Vulnerabilities
Microsoft's February 2022 Patch Tuesday addressed 70 vulnerabilities, with several high-risk but non-critical issues. No active exploits were reported for these patches.
The updates included fixes for three Remote Code Execution (RCE) vulnerabilities in Windows DNS Server (CVE-2022-21984), Microsoft Office Graphics (CVE-2022-22003), and SharePoint Server (CVE-2022-22005). All three scored 7.8 or 8.8 on the CVSSv3.1 scale.
Additionally, a Windows Kernel Elevation of Privilege vulnerability (CVE-2022-21989) was patched, scoring 7.8. Adobe also released updates fixing 17 CVEs, five of which were critical, in various Creative Cloud applications.
Qualys VMDR was instrumental in automatically detecting and prioritising these vulnerabilities. Affected Microsoft 365 products ranged from Azure Data Explorer to Microsoft Teams, with specific organisations not directly mentioned.
While none of the February 2022 vulnerabilities were critical, several posed high risks. Microsoft and Adobe's timely updates, along with tools like Qualys VMDR, help maintain system security. Organizations are advised to apply these patches promptly.
Read also:
- Web3 gaming platform, Pixelverse, debuts on Base and Farcaster networks
- Amazon customer duped over Nvidia RTX 5070 Ti purchase: shipped item replaced with suspicious white powder; PC hardware fan deceived, discovers salt instead of GPU core days after receiving defective RTX 5090.
- Infiltration of Estonian airspace by Russian military aircraft
- Cyber aggression intensifies by China-backed TA415 group, targeting Taiwan's semiconductor production and supply networks
