Microsoft September 2021 Patch Tuesday: Remote code execution flaws in MSHTML, OMI fixed

ZDNet -

Microsoft has released over 60 security fixes and updates resolving issues including a remote code execution (RCE) flaw in MSHTML and other critical bugs.

The Redmond giant’s latest round of patches, usually released on the second Tuesday of each month in what is known as Patch Tuesday, landed on September 14.

Products impacted by September’s security update include Azure Open Management Infrastructure, Azure Sphere, Office Excel, PowerPoint, Word, and Access; the kernel, Visual Studio, Microsoft Windows DNS, and BitLocker, among other software.  

Read on:

On September 7, Microsoft said a remote code execution flaw in MSHTML had been identified and was being used in a limited number of attacks against Windows systems. The zero-day vulnerability, tracked as CVE-2021-40444, has been resolved in this patch round and the firm is urging users to accept the security fix immediately. 

Some other notable vulnerabilities resolved in this update are: 

CVE-2021-38647: With a CVSS score of 9.8, this is

The article Microsoft September 2021 Patch Tuesday: Remote code execution flaws in MSHTML, OMI fixed originally appeared on ZDNet.

Read More.....