Automox Patch Tuesday Rapid Response Center.

So you can eliminate your emerging endpoint vulnerabilities before they’re exploited.

SAVE YOUR SPOT: October Action Plan

Every Patch Tuesday, speed is your biggest advantage for ensuring the security of your infrastructure. It’s a race to harden your endpoints before adversaries exploit these new vulnerabilities.

Automox is here for you. Our experts analyze Patch Tuesday announcements from Microsoft, Adobe, and more to give you strategies for acting now. Turn here for intelligence alerts, recommended remediation strategies for current vulnerabilities and exploits, and a live webinar that breaks down these new threats.

HAPPENING NOW

date

September 2021

Patch Tuesday Action Plan

3
critical
62
high
1
medium
20
low
38
critical
18
high
5
medium
0
low
0
critical
4
high
2
medium
0
low
0
critical
11
high
0
medium
0
low
2
critical
0
high
0
medium
0
low
166
Vulnerabilities
43
Critical
5
Zero-days
details

Microsoft reported 86 vulnerabilities, three of which are rated as critical. In addition, there were two vulnerabilities that while only rated as “High Severity,” nonetheless are classified as zero-days. CVE-2021-40444 is the only actively exploited vulnerability while CVE-2021-36968 is publicly disclosed with no active exploitation known.

Microsoft also posted 25 vulnerabilities affecting the Chromium-based Microsoft Edge. Similarly, Google has released Chrome 93.0.4577.82 for Windows, Mac, and Linux to fix 11 security vulnerabilities, 2 of them being zero-days exploited in the wild.

Adobe has released a large number of security updates, spanning across 15 products. The security update addresses many different vulnerability types ranging from “important” to “critical” in severity. Additionally, Mozilla released 5 separate security advisories spanning across multiple versions of Firefox, Firefox ESR, and Thunderbird.

Finally, Apple released security updates in multiple products to address a duo of vulnerabilities that “may have been actively exploited in the wild.” CISA has also posted a notification relating to these Apple updates.

Get Instant Updates on Vulnerabilities

Subscribe to receive Automox vulnerability alerts

Thank you! The latest vulnerability news and insights will be delivered right to your inbox!

Previous Action Plans

date

August 2021

Patch Tuesday Action Plan

7
critical
38
high
0
medium
0
low
20
critical
9
high
0
medium
0
low
0
critical
8
high
2
medium
1
low
63
Vulnerabilities
27
Critical
1
Zero-days
details

Fortunately, it was a lighter month than usual with only 51 vulnerabilities addressed from Microsoft, 7 of which are rated as critical, and only 1 being actively exploited in the wild. There are also 7 Chromium vulnerabilities with Unknown severity ratings. We reported on 7/23/2021 about the Windows HiveNightmare (SeriousSAM) Vulnerability that is easily exploitable and impacts Windows 10 build 1809 and up and has no current patch. Until a fix is released, Microsoft has advised administrators to employ two workarounds for risk mitigation that is outlined in our blog.

Microsoft announced a late addition to the #PatchTuesday workload on Wednesday with CVE-2021-36958, an important vulnerability discovered in the Windows Printer Spooler that could allow remote code execution. More details in the blog linked below.

Adobe released security updates for two products. Adobe products affected include Magento and Connect, given priorities of 2 and 3 respectively. Mozilla has released three high-rated security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. Both Adobe's and Mozilla's released CVEs are broken down in the action plan diagram to the left.

date

July 2021

Patch Tuesday Action Plan

12
critical
103
high
1
medium
0
low
22
critical
6
high
1
medium
0
low
0
critical
6
high
4
medium
2
low
155
Vulnerabilities
34
Critical
2
Zero-days
details

Microsoft ushers in the 2nd half of 2021 with a massive Patch Tuesday, releasing fixes for a total of 116 vulnerabilities, 12 of which are critical severity, and 2 that have already been exploited in the wild.

Microsoft released an out-of-band update, CVE-2021-34527, detailing a remote code execution zero-day vulnerability existing in the Windows Printer Spooler service allowing attackers to execute code remotely when the service improperly performs privileged file operation. The vulnerability, dubbed "PrintNightmare", follows the earlier CVE-2021-1675 in June that also fixed a remote code execution vulnerability in the same service. This newer vulnerability is rated as critical and scores a CVSS base score of 8.8.

Adobe issued multiple security bulletins this month for Acrobat & Reader, Dimension, Illustrator, Framemaker, and Bridge. In highlight, we note specifically the Acrobat and Reader vulnerabilities affecting both Windows and macOS operating systems.

date

June 2021

Patch Tuesday Action Plan

5
critical
44
high
0
medium
0
low
21
critical
17
high
3
medium
0
low
0
critical
2
high
6
medium
2
low
100
Vulnerabilities
21
Critical
6
Zero-days
details

Microsoft addressed 49 vulnerabilities in this month’s Patch Tuesday update. While the number of vulnerabilities in June was only 5 fewer than May, it represents 33% fewer vulnerabilities on average for each month so far this year. Of those vulnerabilities, 5 were rated as critical, the same as last month, and 52% lower on average. Unfortunately, 6 vulnerabilities are being actively exploited in the wild, equaling the highest number seen so far this year. Therefore, we have 6 zero-days from Microsoft this month.

Adobe released security updates for 10 products. Each bulletin received Adobe Priority Rating 3, except for the bulletins for Acrobat & Reader and Experience Manager which were raised to Priority Rating 2.

At the beginning of June, Mozilla released four security updates covering Firefox 89, Firefox ESR 78.11, Firefox for iOS 34, and Thunderbird 78.11. You can view the latest Mozilla advisories here.

date

May 2021

Patch Tuesday Action Plan

4
critical
50
high
1
medium
0
low
25
critical
13
high
6
medium
0
low
2
critical
1
high
1
medium
0
low
103
Vulnerabilities
31
Critical
0
Zero-days
details

Microsoft's May Patch Tuesday saw 55 security fixes compared to 108 tallied in the month of April. We are currently tracking 4 critical vulnerabilities, none of which are being exploited in the wild to the best of our knowledge and vendor communications.

Earlier in May, Mozilla released updates for a number of products including Firefox, Firefox ESR, and Thunderbird. You can view their latest security bulletins here.

Adobe has also released a large number fixes for with a total of 25 critical CVEs.

date

April 2021

Patch Tuesday Action Plan

19
critical
88
high
1
medium
0
low
7
critical
3
high
0
medium
0
low
1
critical
0
high
0
medium
0
low
119
Vulnerabilities
27
Critical
2
Zero-days
details

April’s Patch Tuesday yields 108 new Microsoft security fixes, delivering the highest monthly total for 2021 (so far) and showing a return to the 100+ totals we consistently saw in 2020. This month’s haul includes 19 critical vulnerabilities and a high-severity zero-day that is actively being exploited in the wild. Along with Microsoft’s release, we’re also seeing multiple browser related vulnerabilities this month that should be addressed immediately.

On Twitter, a security researcher has disclosed a zero-day remote code execution vulnerability that works on the current version of Google Chrome and Microsoft Edge. Finally, Adobe has released fixes for 10 total vulnerabilities spanning across Adobe Photoshop, Bridge, Digital Editions, and RoboHelp.

date

March 2021

Patch Tuesday Action Plan

14
critical
75
high
0
medium
0
low
9
critical
8
high
0
medium
0
low
0
critical
5
high
4
medium
3
low
118
Vulnerabilities
23
Critical
5
Zero-days
details

Microsoft addresses 89 new vulnerabilities this month, representing a 60% increase from February. Of this total, 14 are rated as “critical” with 5 that are being actively exploited in the wild, 4 of which are specific to Microsoft Exchange Server. Last week, Microsoft released security updates addressing 7 Exchange Server vulnerabilities due to the urgent nature of the vulnerabilities. There were 7 CVEs in total, including the 4 critical zero-days. Microsoft attributed the weaponization of these to a Chinese state-sponsored hacking group known as “Hafnium.”

Adobe had a modest release of five security updates addressing a handful of vulnerabilities, nine of which are critical affecting Creative Cloud Desktop Application (APSB21-18), Connect (APSB21-19), Framemaker (APSB21-14), Animate (APSB21-21), and Photoshop (APSB21-17).

In late February, Mozilla released a security advisory for vulnerabilities fixed in Firefox, Firefox ESR, and Thunderbird.

date

February 2021

Patch Tuesday Action Plan

11
critical
43
high
2
medium
0
low
32
critical
17
high
1
medium
0
low
1
critical
0
high
0
medium
0
low
107
Vulnerabilities
44
Critical
2
Zero-days
details

February is often thought of as the month of love, and Microsoft certainly showed us some love this month. They released a minimal 56 patches, with 11 being Critical. While the overall number of vulnerabilities fixed this month is relatively low, there is still cause for concern. CVE-2021-1732 is a locally exploited Windows Win32K elevation of privilege bug that is actively being exploited in the wild. It's also worth noting that all 11 of the Critical rated updates fix Remote Code Execution vulnerabilities.

Adobe has released fixes for numerous vulnerabilities spanning across Dreamweaver, Illustrator, Animate, Photoshop, Magento, Acrobat, and Reader. Adobe has received a report that CVE-2021-21017 has been exploited in the wild in limited attacks targeting Adobe Reader users on Windows.

Earlier in the month, Mozilla released a security advisory for vulnerabilities fixed in Firefox 85.0.1 and Firefox ESR 78.7.1. This advisory was deemed a Critical fix. Apple also released updates for macOS Catalina and macOS Mojave, as well as a macOS Big Sure 11.2 Security Update. You can view details of these Apple updates here.

date

January 2021

Patch Tuesday Action Plan

10
critical
73
high
0
medium
0
low
7
critical
1
high
0
medium
0
low
2
critical
0
high
0
medium
0
low
93
Vulnerabilities
19
Critical
1
Zero-days
details

The first Patch Tuesday of 2021 brings 83 new Microsoft vulnerabilities, including 10 critical updates. All critical CVEs are remote code execution (RCE) bugs with the only exception being a memory corruption vulnerability. Vulnerabilities of note include CVE-2021-1647, a zero-day Microsoft Defender remote code execution vulnerability with exploitation detected in the wild. Two Important-rated vulnerabilities are deemed more likely to be exploited, these are CVE-2021-1707 and -1709.

In January, Mozilla released a fix for one critical security vulnerability found in Firefox, Firefox ESR, and Firefox for Android. They also have released an update for one critical security vulnerability in Thunderbird 78.6.1.

Additionally, Adobe released a multitude of updates across their products, including Adobe Bridge, Captivate, InCopy, Campaign Classic, Animate, Illustrator, and Photoshop. View the patch index below for more details.

date

December 2020

Patch Tuesday Action Plan

9
critical
46
high
3
medium
0
low
3
critical
2
high
0
medium
0
low
0
critical
1
high
0
medium
0
low
64
Vulnerabilities
12
Critical
0
Zero-days
details

The first gift of the holiday season comes from Microsoft in the form of the second lightest Patch Tuesday release of the year. December's total of 58 new vulnerabilities pales in comparison to previous months, bringing 9 critical updates, all of which are remote code execution (RCE) bugs with the only exception being a memory corruption vulnerability.

Adobe has patched multiple critical vulnerabilities for December across Adobe Experience Manager, Adobe Lightroom, Adobe Prelude, and Acrobat. While lighter than usual, the most severe allow for arbitrary code execution including three critical severity CVEs and one less severe flaw identified.

date

November 2020

Patch Tuesday Action Plan

17
critical
93
high
0
medium
2
low
0
critical
37
high
0
medium
0
low
1
critical
1
high
0
medium
0
low
155
Vulnerabilities
21
Critical
4
Zero-days
details

Back to triple-digit Microsoft patches, we have 112 total vulnerabilities with 17 earning the Critical ranking. View the blog linked below for in-depth commentary from the Automox experts on the latest vulnerabilities.

November is jam-packed full of third-party vulnerabilities, so we went ahead and included some out-of-band patches that were released between the October and November Patch Tuesdays. View our Patch Index below for further details on these releases. Included in the aforementioned third-party patches are three zero-days from Apple as a part of the macOS Catalina 10.15.7 update. Google also released a patch for CVE-2020-16009, a vuln with known exploit code in the wild.

date

October 2020

Patch Tuesday Action Plan

11
critical
76
high
2
medium
0
low
1
critical
0
high
0
medium
0
low
90
Vulnerabilities
12
Critical
0
Zero-days
details

While October’s Patch Tuesday presents us with a lighter load than what we’ve grown accustomed to over the course of 2020, we still have 89 Microsoft patches and a bevy of critical RCE vulnerabilities to contend with this month.

The number of vulnerabilities patched by Microsoft is a bit lighter this month than the last few months, but the number of RCEs still stays somewhat steady. This presents a challenge to IT Ops and Sec Ops teams to patch these RCEs as soon as possible.

date

September 2020

Patch Tuesday Action Plan

23
critical
106
high
0
medium
0
low
12
critical
6
high
0
medium
0
low
0
critical
4
high
3
medium
3
low
157
Vulnerabilities
35
Critical
0
Zero-days
details

This month, Microsoft has released fixes for 129 vulnerabilities. Of these, 23 patches are rated as critical and seven as important. Windows admins are going to have their hands full this month, especially given the trend of 100-plus patching updates we’ve seen for the last several months.

For September, Adobe and Mozilla have also released a number of patches with critical and high severity ratings. As the remote work trend continues to grow, many organizations are finding that managing endpoints with legacy, on-premise solutions is an inefficient approach. And with such heavy patching loads coming out every month, the need for speed and efficiency is becoming even more pronounced.

date

August 2020

Patch Tuesday Action Plan

17
critical
103
high
0
medium
0
low
25
critical
19
high
0
medium
0
low
0
critical
6
high
5
medium
4
low
179
Vulnerabilities
42
Critical
1
Zero-days
details

Microsoft has released 120 vulnerabilities, 17 of which are deemed Critical. There is one zero-day, CVE-2020-1380, and one publicly disclosed vulnerability, CVE-2020-1464. However, this month’s patch update showcases that CVSS rating isn’t the end-all, be-all of patching, as one of this month’s exploited vulnerabilities is rated important. Any vulnerability can be exploited, regardless of its rating.

For August, Adobe has also released fixes for Lightroom, Acrobat and Reader. Additionally, Adobe released a number of out-of-band patches throughout July, highlighting the importance of keeping a close eye on your patch status.

date

July 2020

Patch Tuesday Action Plan

18
critical
105
high
0
medium
0
low
4
critical
9
high
0
medium
0
low
1
critical
7
high
5
medium
2
low
151
Vulnerabilities
23
Critical
0
Zero-days
details

Microsoft has released 123 new security vulnerabilities, 18 of which are deemed Critical. One vulnerability is particularly concerning. CVE-2020-1350 is a Critical Remote Code Execution (RCE) vulnerability in Windows DNS Server and is classified as a ‘wormable’ vulnerability with a CVSS base score of 10.0. This issue results from a flaw in Microsoft’s DNS server role implementation and affects all Windows Server versions.

Previous to Patch Tuesday, Microsoft released 2 out-of-band patches addressing two remote code execution (RCE) vulnerabilities. Adobe released multiple security vulnerabilities for a variety of products while Mozilla released a number of patches for Firefox, Firefox ESR, and Thunderbird. More updates to come throughout the day.

date

June 2020

Patch Tuesday Action Plan

11
critical
109
high
7
medium
2
low
4
critical
6
high
0
medium
0
low
0
critical
6
high
1
medium
2
low
148
Vulnerabilities
15
Critical
0
Zero-days
details

Microsoft continues on their trend of triple-digit vulnerabilities with 129 in June. Of these, 11 are rated critical. The June Patch Tuesday is not short of updates for the Microsoft ecosystem. From Windows OS to browsers, Sharepoint to SMBv3, the release of these patches goes to show that an organization needs to have a proactive approach to endpoint hardening as these can add up month after month if left unaddressed.

Adobe released three updates addressing a number of vulnerabilities. These updates include three critical vulnerabilities in Adobe Framemaker and one critical vulnerability in Adobe Flash Player. Mozilla also released updates earlier in the month for Firefox, Firefox ESR, and Thunderbird. View our Patch Index for further details about the latest patch updates.

date

May 2020

Patch Tuesday Action Plan

16
critical
95
high
0
medium
0
low
41
critical
27
high
3
medium
0
low
3
critical
3
high
5
medium
2
low
195
Vulnerabilities
60
Critical
0
Zero-days
details

Microsoft released patches to address 111 new vulnerabilities, with 16 critical vulnerabilities. Notable vulnerabilities include CVE-2020-1023, CVE-2020-1102, and CVE-2020-1135. May continues the “New Normal” of triple-digit vulnerabilities!

We've included security updates released between last Patch Tuesday and this one, including advisories for Adobe Bridge, Illustrator, Magento, Acrobat and Reader, and DNG Software Development Kit. Mozilla released three critical security advisories for Firefox 76, Firefox ESR 68.8, and Thunderbird 68.8.0 as well as one moderate advisory for Firefox for iOS 25. View our May Patch Index for more info.

date

April 2020

Patch Tuesday Action Plan

15
critical
98
high
0
medium
0
low
30
critical
17
high
0
medium
0
low
2
critical
5
high
3
medium
0
low
170
Vulnerabilities
47
Critical
5
Zero-days
details

Mozilla Firefox and Adobe both released security updates between last Patch Tuesday and this one, so we've included their fixes here. Firefox had 2 notable zero-days that you'll want to fix.

This month, Microsoft is rolling out security fixes for a total of 113 vulnerabilities, 15 of which are rated critical. April’s Patch Tuesday rollout also features patches for three actively exploited zero-day vulnerabilities and two publicly disclosed vulnerabilities. Earlier in the month, an out-of-band patch for a Windows 10 Internet connectivity issue was also released.

Due to current events, many organizations have seen their remote workforce expand dramatically, seemingly overnight. Patching remote devices with legacy technology can be cumbersome in the modern tech landscape, for both IT staff and remote workers. Regardless, deploying security updates quickly remains as important as ever.

date

March 2020

Patch Tuesday Action Plan

26
critical
88
high
1
medium
0
low
0
critical
5
high
6
medium
1
low
127
Vulnerabilities
26
Critical
0
Zero-days
details

With a record month for CVEs last month, we expected March to be a light release. Boy were we wrong! Microsoft dropped off 115 CVEs, 26 of which were deemed critical. To add on, Firefox released 12 vulnerabilities for Firefox 74 and Firefox ESR68.6. View our Patch Index below for full details.

View the Automox Automating Patch Tuesday Webinar: March 2020 with Patch Tuesday expert Jay Goodman. During the webinar, we highlighted key vulnerability dislcosures that may require immediate action within your environment.

date

February 2020

Patch Tuesday Action Plan

12
critical
87
high
0
medium
0
low
35
critical
5
high
2
medium
0
low
0
critical
3
high
6
medium
1
low
151
Vulnerabilities
47
Critical
1
Zero-days
details

Microsoft released fixes for 99 security vulnerabilities this month, 12 of which are rated critical -- nearly double the number of patches we saw in January. February’s update also includes a fix for a zero-day vulnerability in Internet Explorer that’s being actively exploited in the wild. Microsoft suggests patching for these vulnerabilities as soon as possible.

Adobe released patches to 35 critical security vulnerabilities, with 21 in Framemaker, 12 in Acrobat and Reader, one in Digital Editions, and one in Flash Player. Mozilla also released updates for Firefox 73, Firefox ESR 68.5, and Thunderbird 68.5.

date

January 2020

Patch Tuesday Action Plan

8
critical
41
high
0
medium
0
low
5
critical
3
high
1
medium
0
low
1
critical
5
high
5
medium
1
low
70
Vulnerabilities
14
Critical
1
Zero-days
details

The first Patch Tuesday of 2020 brought 49 Microsoft vulnerabilities, 8 of which were deemed critical. This Patch Tuesday also marks the Windows 7 and Server 2008 End-of-Lives, which explains the 23 security fixes for those two products.

View the Automox Automating Patch Tuesday webinar below for insight around the dangerous vulnerability discovered by the NSA, multiple new remote code execution vulnerabilities, and in-depth discussion around the latest Microsoft and third-party patches.