El día martes 14 de diciembre del presente año, Microsoft anunció y publicó sus nuevas actualizaciones, y con él llegan las mitigaciones para 6 vulnerabilidades de día cero y un total de 67 fallos de seguridad de diferentes prioridades. Estas actualizaciones incluyen la corrección de una vulnerabilidad de Windows Installer, la cual ha sido explotada activamente y utilizada en campañas de distribución de malware por diferentes actores de amenazas.
Microsoft ha corregido 55 vulnerabilidades (sin incluir Microsoft Edge) con la actualización del día martes, solo 7 han sido clasificadas como Críticas y las otras 60 como Importantes.
A continuación se indica el número total de cada tipo de vulnerabilidades lanzadas por Microsoft:
- 21 Vulnerabilidades de Elevación de Privilegios
- 26 Vulnerabilidades de Ejecución Remota de Código
- 10 Vulnerabilidades de divulgación de información
- 3 Vulnerabilidades de denegación de servicio
- 7 Vulnerabilidades de suplantación de identidad
¿Cuáles son las vulnerabilidades más críticas de esta actualización?
- CVE-2021-43215: iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution
- CVE-2021-42310: Microsoft Defender for IoT Remote Code Execution Vulnerability
- CVE-2021-43899: Microsoft 4K Wireless Display Adapter Remote Code Execution Vulnerability
- CVE-2021-43905: Microsoft Office app Remote Code Execution Vulnerability
- CVE-2021-43233: Remote Desktop Client Remote Code Execution Vulnerability
- CVE-2021-43908: Visual Studio Code Spoofing Vulnerability
- CVE-2021-43217: Windows Encrypting File System (EFS) Remote Code Execution Vulnerability
Recomendados a todos los Sysadmins y Administradores de Sistemas, el tomar en cuenta las actualizaciones siguientes e implementarlas en sus dependencias lo más pronto posible.
Tabla de vulnerabilidades corregidas en la actualización de Diciembre 2021:
Aplicaciones | CVE ID | Titulo del CVE | Nivel de importancia |
Apps | CVE-2021-43890 | Windows AppX Installer Spoofing Vulnerability | Importante |
ASP.NET Core & Visual Studio | CVE-2021-43877 | ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability | Importante |
Azure Bot Framework SDK | CVE-2021-43225 | Bot Framework SDK Remote Code Execution Vulnerability | Importante |
BizTalk ESB Toolkit | CVE-2021-43892 | Microsoft BizTalk ESB Toolkit Spoofing Vulnerability | Importante |
Internet Storage Name Service | CVE-2021-43215 | iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution | Crítico |
Microsoft Defender for IoT | CVE-2021-41365 | Microsoft Defender for IoT Remote Code Execution Vulnerability | Importante |
Microsoft Defender for IoT | CVE-2021-42311 | Microsoft Defender for IoT Remote Code Execution Vulnerability | Importante |
Microsoft Defender for IoT | CVE-2021-42310 | Microsoft Defender for IoT Remote Code Execution Vulnerability | Crítico |
Microsoft Defender for IoT | CVE-2021-43882 | Microsoft Defender for IoT Remote Code Execution Vulnerability | Importante |
Microsoft Defender for IoT | CVE-2021-43888 | Microsoft Defender for IoT Information Disclosure Vulnerability | Importante |
Microsoft Defender for IoT | CVE-2021-42314 | Microsoft Defender for IoT Remote Code Execution Vulnerability | Importante |
Microsoft Defender for IoT | CVE-2021-42313 | Microsoft Defender for IoT Remote Code Execution Vulnerability | Importante |
Microsoft Defender for IoT | CVE-2021-42312 | Microsoft Defender for IOT Elevation of Privilege Vulnerability | Importante |
Microsoft Defender for IoT | CVE-2021-43889 | Microsoft Defender for IoT Remote Code Execution Vulnerability | Importante |
Microsoft Defender for IoT | CVE-2021-42315 | Microsoft Defender for IoT Remote Code Execution Vulnerability | Importante |
Microsoft Devices | CVE-2021-43899 | Microsoft 4K Wireless Display Adapter Remote Code Execution Vulnerability | Crítico |
Microsoft Edge (Chromium-based) | CVE-2021-4056 | Chromium: CVE-2021-4056: Type Confusion in loader | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4055 | Chromium: CVE-2021-4055 Heap buffer overflow in extensions | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4054 | Chromium: CVE-2021-4054 Incorrect security UI in autofill | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4052 | Chromium: CVE-2021-4052 Use after free in web apps | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4053 | Chromium: CVE-2021-4053 Use after free in UI | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4065 | Chromium: CVE-2021-4065 Use after free in autofill | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4064 | Chromium: CVE-2021-4064 Use after free in screen capture | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4063 | Chromium: CVE-2021-4063 Use after free in developer tools | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4068 | Chromium: CVE-2021-4068 Insufficient validation of untrusted input in new tab page | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4067 | Chromium: CVE-2021-4067 Use after free in window manager | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4066 | Chromium: CVE-2021-4066 Integer underflow in ANGLE | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4059 | Chromium: CVE-2021-4059 Insufficient data validation in loader | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4062 | Chromium: CVE-2021-4062 Heap buffer overflow in BFCache | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4061 | Chromium: CVE-2021-4061 Type Confusion in V8 | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4058 | Chromium: CVE-2021-4058 Heap buffer overflow in ANGLE | Unknown |
Microsoft Edge (Chromium-based) | CVE-2021-4057 | Chromium: CVE-2021-4057 Use after free in file API | Unknown |
Microsoft Local Security Authority Server (lsasrv) | CVE-2021-43216 | Microsoft Local Security Authority Server (lsasrv) Information Disclosure Vulnerability | Importante |
Microsoft Message Queuing | CVE-2021-43236 | Microsoft Message Queuing Information Disclosure Vulnerability | Importante |
Microsoft Message Queuing | CVE-2021-43222 | Microsoft Message Queuing Information Disclosure Vulnerability | Importante |
Microsoft Office | CVE-2021-43875 | Microsoft Office Graphics Remote Code Execution Vulnerability | Importante |
Microsoft Office | CVE-2021-42295 | Visual Basic for Applications Information Disclosure Vulnerability | Importante |
Microsoft Office | CVE-2021-43905 | Microsoft Office app Remote Code Execution Vulnerability | Crítico |
Microsoft Office Access | CVE-2021-42293 | Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege Vulnerability | Importante |
Microsoft Office Excel | CVE-2021-43256 | Microsoft Excel Remote Code Execution Vulnerability | Importante |
Microsoft Office SharePoint | CVE-2021-42309 | Microsoft SharePoint Server Remote Code Execution Vulnerability | Importante |
Microsoft Office SharePoint | CVE-2021-42320 | Microsoft SharePoint Server Spoofing Vulnerability | Importante |
Microsoft Office SharePoint | CVE-2021-43242 | Microsoft SharePoint Server Spoofing Vulnerability | Importante |
Microsoft Office SharePoint | CVE-2021-42294 | Microsoft SharePoint Server Remote Code Execution Vulnerability | Importante |
Microsoft PowerShell | CVE-2021-43896 | Microsoft PowerShell Spoofing Vulnerability | Importante |
Microsoft Windows Codecs Library | CVE-2021-41360 | HEVC Video Extensions Remote Code Execution Vulnerability | Importante |
Microsoft Windows Codecs Library | CVE-2021-43248 | Windows Digital Media Receiver Elevation of Privilege Vulnerability | Importante |
Microsoft Windows Codecs Library | CVE-2021-43214 | Web Media Extensions Remote Code Execution Vulnerability | Importante |
Microsoft Windows Codecs Library | CVE-2021-40452 | HEVC Video Extensions Remote Code Execution Vulnerability | Importante |
Microsoft Windows Codecs Library | CVE-2021-40453 | HEVC Video Extensions Remote Code Execution Vulnerability | Importante |
Microsoft Windows Codecs Library | CVE-2021-43243 | VP9 Video Extensions Information Disclosure Vulnerability | Importante |
Office Developer Platform | CVE-2021-43255 | Microsoft Office Trust Center Spoofing Vulnerability | Importante |
Remote Desktop Client | CVE-2021-43233 | Remote Desktop Client Remote Code Execution Vulnerability | Crítico |
Role: Windows Fax Service | CVE-2021-43234 | Windows Fax Service Remote Code Execution Vulnerability | Importante |
Role: Windows Hyper-V | CVE-2021-43246 | Windows Hyper-V Denial of Service Vulnerability | Importante |
Visual Studio Code | CVE-2021-43891 | Visual Studio Code Remote Code Execution Vulnerability | Importante |
Visual Studio Code | CVE-2021-43908 | Visual Studio Code Spoofing Vulnerability | Importante |
Visual Studio Code – WSL Extension | CVE-2021-43907 | Visual Studio Code WSL Extension Remote Code Execution Vulnerability | Crítico |
Windows Common Log File System Driver | CVE-2021-43226 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | Importante |
Windows Common Log File System Driver | CVE-2021-43224 | Windows Common Log File System Driver Information Disclosure Vulnerability | Importante |
Windows Common Log File System Driver | CVE-2021-43207 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | Importante |
Windows Digital TV Tuner | CVE-2021-43245 | Windows Digital TV Tuner Elevation of Privilege Vulnerability | Importante |
Windows DirectX | CVE-2021-43219 | DirectX Graphics Kernel File Denial of Service Vulnerability | Importante |
Windows Encrypting File System (EFS) | CVE-2021-43217 | Windows Encrypting File System (EFS) Remote Code Execution Vulnerability | Crítico |
Windows Encrypting File System (EFS) | CVE-2021-43893 | Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability | Importante |
Windows Event Tracing | CVE-2021-43232 | Windows Event Tracing Remote Code Execution Vulnerability | Importante |
Windows Installer | CVE-2021-43883 | Windows Installer Elevation of Privilege Vulnerability | Importante |
Windows Kernel | CVE-2021-43244 | Windows Kernel Information Disclosure Vulnerability | Importante |
Windows Media | CVE-2021-40441 | Windows Media Center Elevation of Privilege Vulnerability | Importante |
Windows Mobile Device Management | CVE-2021-43880 | Windows Mobile Device Management Elevation of Privilege Vulnerability | Importante |
Windows NTFS | CVE-2021-43240 | NTFS Set Short Name Elevation of Privilege Vulnerability | Importante |
Windows NTFS | CVE-2021-43231 | Windows NTFS Elevation of Privilege Vulnerability | Importante |
Windows NTFS | CVE-2021-43230 | Windows NTFS Elevation of Privilege Vulnerability | Importante |
Windows NTFS | CVE-2021-43229 | Windows NTFS Elevation of Privilege Vulnerability | Importante |
Windows Print Spooler Components | CVE-2021-41333 | Windows Print Spooler Elevation of Privilege Vulnerability | Importante |
Windows Remote Access Connection Manager | CVE-2021-43223 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability | Importante |
Windows Remote Access Connection Manager | CVE-2021-43238 | Windows Remote Access Elevation of Privilege Vulnerability | Importante |
Windows Storage | CVE-2021-43235 | Storage Spaces Controller Information Disclosure Vulnerability | Importante |
Windows Storage Spaces Controller | CVE-2021-43227 | Storage Spaces Controller Information Disclosure Vulnerability | Importante |
Windows SymCrypt | CVE-2021-43228 | SymCrypt Denial of Service Vulnerability | Importante |
Windows TCP/IP | CVE-2021-43247 | Windows TCP/IP Driver Elevation of Privilege Vulnerability | Importante |
Windows Update Stack | CVE-2021-43237 | Windows Setup Elevation of Privilege Vulnerability | Importante |
Windows Update Stack | CVE-2021-43239 | Windows Recovery Environment Agent Elevation of Privilege Vulnerability | Importante |

Ingeniero en Ciberseguridad por la Universidad Tecnológica de Chile, Speaker, Analista de Ciberinteligencia, Investigador y Redactor para CronUp Ciberseguridad.