Microsoft Security Update February 2022
Microsoft has released fixes for 51 new CVE’s this month.
CVE-2022-21984 | Windows DNS Server Remote Code Execution Vulnerability
This remote execution vulnerability in Windows DNS Server could have disastrous consequences since an attacker could completely take over your DNS and execute code with administrator privileges. If your DNS doesn’t work, you whole internal network communication could fail so make sure to apply this patch as fast as you can.
Microsoft has reported only servers with dynamic updates turned on are vulnerable.
CVE-2022-22005 | Microsoft SharePoint Server Remote Code Execution Vulnerability
This bug could allow an attacker to run code on an on-premise SharePoint server. Authentication is required to be able to exploit this security flaw which mitigates the danger for some part; nonetheless you want to be as secure as possible so make sure your SharePoint Server is up to date.
For a list of all vulnerabilities that were disclosed this month go here.
If you need any assistance with cybersecurity, want training for your employees or have any questions regarding cybersecurity within your company, don’t hesitate to contact us.