Antigen Security – Proactive Guidance – Patching & Vulnerability Management – November 2021

Share This Post

Patch Tuesday November 2021 

 

Microsoft – https://msrc.microsoft.com/update-guide/vulnerability 

 

Microsoft has released its November 2021 Patch Tuesday Advisory. We have six vulnerabilities classified as critical in nature with two additional vulnerabilities that have been detected as being exploited in the wild. Three vulnerabilities are rated as “Exploitation More Likely”, which imply that these products are well targeted by attackers and will draw attention by threat actors.  

 

Critical Vulnerabilities 

 

Exploitation detected by Microsoft – Patch first 

 

No Exploits in this list detected but rated as “Exploitation More Likely” 

 

 

 SAP – https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=589496864 

 

SAP has released their patching notification for November 2021 which includes two new vulnerabilities that impact their ABAP Platform and SAP Commerce products. Both vulnerabilities are missing an authorization check and should be patched as soon as possible.  

 

Critical Vulnerabilities 

 

 

Cisco – https://tools.cisco.com/security/center/publicationListing.x 

 

Cisco release a couple of critical vulnerabilities earlier in the month that should be reviewed and address by network operations. The first includes hard coded SSH keys that allow an unauthenticated attacker to login as root. The second would allow command injection and configuration modification. Both are advised to be patched immediately. 

 

 

 Adobe – https://helpx.adobe.com/security.html/security/security-bulletin.ug.html 

 

Adobe has released two critical patches for Adobe InCopy and RoboHelp Server. Both vulnerabilities allow for arbitrary code execution and should be prioritized for remediation. 

 

 

Citrix – https://support.citrix.com/article/CTX330728 

 

Citrix released a critical patch to address an unauthenticated denial of service on ADC and Gateway devices. The updated versions that remediate this issue are listed below. 

 

  • CVE-2021-22955 – Citrix ADC & Citrix Gateway Unauthenticated denial of service 
    • Pre-conditions: Appliance must be configured as a VPN (Gateway) or AAA virtual server

Remediated Versions: 

  • Citrix ADC and Citrix Gateway 13.1-4.43 and later releases of 13.1 
  • Citrix ADC and Citrix Gateway 13.0-83.27 and later releases of 13.0 
  • Citrix ADC and Citrix Gateway 12.1-63.22 and later releases of 12.1 
  • Citrix ADC and NetScaler Gateway 11.1-65.23 and later releases of 11.1 
  • Citrix ADC 12.1-FIPS 12.1-55.257 and later releases of 12.1-FIPS 

Make sure your business overcomes threats

Get in touch to learn how to prevent a breach from costing you more than it has to.