Microsoft fixes wormable RCE in Windows Server and Windows (CVE-2022-21907)

Help Net Security

The first Patch Tuesday of 2022 is upon us, and Microsoft has delivered patches for 96 CVE-numbered vulnerabilities, including a wormable RCE flaw in Windows Server (CVE-2022-21907). Vulnerabilities of note Among the publicly known flaws are a “critical” RCE in curl (CVE-2021-22947) and “important” RCE in libarchive (CVE-2021-36976) open source libraries, which have now been “fixed” in Windows 10, 11 and Server with the inclusion of the most recent versions of the libraries. But these … More →

The post Microsoft fixes wormable RCE in Windows Server and Windows (CVE-2022-21907) appeared first on Help Net Security.