Microsoft Security Update Revisions (March 25, 2022)

Posted on 2022-03-28 by guenni

Microsoft has released several revisions for security updates on 25 March 2022. The revisions address changed vulnerability assessments. Here is an uncommented overview.

Advertising

***********************************************************
Title: Microsoft Security Update Revisions
Issued: March 25, 2022
***********************************************************

Summary
=======

The following CVEs have undergone revision increments.
===========================================================

* CVE-2021-36927
* CVE-2022-21957
* CVE-2022-23282
* CVE-2022-23300

CVE-2021-36927 | Windows Digital TV Tuner device registration application Elevation
   of Privilege Vulnerability
  – Version: 2.1
– Reason for Revision: Affected software updated with new package information.
– Originally posted: August 10, 2021
– Updated: March 23, 2022
– Aggregate CVE Severity Rating: Important

Advertising

CVE-2022-21957 | Microsoft Dynamics 365 (on-premises) Remote Code Execution
   Vulnerability
– Version: 2.0
– Reason for Revision: The following revisions have been made to the Security
   Updates table: 1) Microsoft is announcing the availability of the security updates
   for Microsoft Dynamics 365 (on-premises) version 9.0 and Microsoft Dynamics 365
   (on-premises) version 9.1. Customers running these versions of Microsoft Dynamics
   365 (on-premises) should install the update for their product to be protected from
   this vulnerability. See the Security Updates table for Download and Article links.
   2) Removed Microsoft Dynamics 365 (on-premises) version 8.2 as it is not affected
   by this vulnerability.
– Originally posted: February 8, 2022
– Updated: March 23, 2022
– Aggregate CVE Severity Rating: Important

CVE-2022-23282 | Paint 3D Remote Code Execution Vulnerability
– Version: 1.1
– Reason for Revision: Added an FAQ. This is an information change only.
– Originally posted: March 8, 2022
– Updated: March 23, 2022
– Aggregate CVE Severity Rating: Important

CVE-2022-23300 | Raw Image Extension Remote Code Execution Vulnerability
– Version: 1.1
– Reason for Revision: Added platform designations to Security Updates table because
   the version of the raw extension is different for Windows 10 operating systems
   and Windows 11 operating systems. This is an informational change only.
– Originally posted: March 8, 2022
– Updated: March 24, 2022
– Aggregate CVE Severity Rating: Important

Advertising
This entry was posted in Security and tagged . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: Please note the rules for commenting on the blog (first comments and linked posts end up in moderation, I release them every few hours, I rigorously delete SEO posts/SPAM).