Microsoft is rolling out the latest Patch Tuesday Update to patch 56 security bugs found in Windows and other software. Nine out of 56 vulnerabilities are rated as critical that can allow hackers to take remote control of unpatched computer.
Moreover, two Microsoft’s .NET Framework critical flaws were disclosed prior to this month’s batch of Patch Tuesday updates.
One of the critical vulnerabilities CVE-2021-1732 is already in wild and is being exploited actively by the hackers. Operating systems affected by this issue are window 10, Windows Server 2016 and above.
CVE-2021-24078, a vulnerability in DNS server on Windows Server 2008 to 2019 versions has become the concern for enterprises as this flaw lets attackers to install the malicious software in victim’s system.
A zero day flaw CVE-2021-21148 in Google’s Chrome Web browser is also detected by security researchers. The attacks on Chrome are active hence it’s recommended to apply the patch without any delay.
In addition, a flaw named as Zerologon, found in the core “Netlogon” component of Windows Server devices that allows an unauthenticated attacker gain administrative access to a Windows domain controller.
By default, Windows 10 download and install updates automatically, if you want to download Windows 10 cumulative updates manually, you can grab Windows 10 offline installer direct download links and update your system.
Security Updates Released on February 2021
Windows 10 version 2004 and 20H2 Support Page: KB4601319
Windows 10 version 1903 and 1909 Support Page: KB4601315