Microsoft's February 2021 Patch Tuesday Addresses 56 CVEs 

On February 9, Microsoft published its monthly batch of patches, commonly referred to as Patch Tuesday. For February 2021, Microsoft addressed 56 CVEs, including 11 critical vulnerabilities.

This month’s release includes fixes for .NET Core, .NET Framework, Azure IoT, Developer Tools, Microsoft Azure Kubernetes Service, Microsoft Dynamics, Microsoft Edge for Android, Microsoft Exchange Server, Microsoft Graphics Component, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft Windows Codecs Library, DNS Server, Hyper-V, Windows Fax Service, Skype for Business, SysInternals, System Center, Visual Studio, Windows Address Book, Windows Backup Engine, Windows Console Driver, Windows Defender, Windows DirectX, Windows Event Tracing, Windows Installer, Windows Kernel, Windows Mobile Device Management, Windows Network File System, Windows PFX Encryption, Windows PKU2U, Windows PowerShell, Windows Print Spooler Components, Windows Remote Procedure Call, Windows TCP/IP, and Windows Trust Verification API.

While the number might seem less daunting than previous months, the vulnerabilities patched this month are quite significant and include fixes for a vulnerability exploited in the wild, as well as multiple vulnerabilities in Microsoft’s implementation of TCP/IP for Windows. Microsoft also completed its phased two-part rollout for Zerologon.

For more information about the vulnerabilities, including the availability of patches and Tenable product coverage, please visit our blog.