Microsoft has released Windows 10 21H1 Patch for June 2021. Microsoft released the list of Vulnerabilities in June 2020 patch Tuesday, and there are announced for many Microsoft applications Intune Management Extension, Outlook, Excel, 3D Paint, Defender, Remote Desktop, and more.
Microsoft released the latest version of Windows 10 21H1. I have also explained the easiest option to upgrade to the latest version. The Windows 10 KB5003637 June patch is available for the Windows 10 users already running.
Microsoft published release notes for June 2021 cumulative update patch. As you might have already noted, the 21H1 was released with very few new features like Windows Hello and Defender. Most of us are waiting for Next Generation Windows Announcement is on 24th June 2021.
Outlook | Excel | 3D Paint | Defender | Remote Desktop – Windows 10 21H1 Patch
As you can see below, there are vulnerabilities associated with applications like Outlook, Excel, 3D paint, Defender, Remote Desktop, and many others. In the below section, I highlight some of the details about the vulnerabilities.
One example is Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability & Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability explained as part of CVE-2021-33741 & CVE-2021-31982.
Microsoft Defender Remote Code Execution Vulnerability is also explained in CVE-2021-31985. The defender also has another vulnerability explained in CVE-2021-31978 called Microsoft Defender Denial of Service Vulnerability.
Microsoft has already fixed all these vulnerabilities. You need to ensure that Windows 10 cumulative update KB5003637 is installed on your device to fix some of these issues. However, some of them are fixed independently/automatically by the application fixes/cloud service.
Intune Management Extension Issue – Windows 10 21H1 Patch
Microsoft Intune Management Extension Remote Code Execution Vulnerability is announced as part of June 2021 as part of CVE-2021-31980. The issue gets fixed automatically when the client connects to Intune service.
CVE-2021-31980 | Microsoft Intune Management Extension Remote Code Execution Vulnerability |
CVE Details – Windows 10 21H1 Patch
You can get more details from the below table:
CVE Numbers | CVE Title |
CVE-2021-33742 | Windows MSHTML Platform Remote Code Execution Vulnerability |
CVE-2021-33741 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability |
CVE-2021-33739 | Microsoft DWM Core Library Elevation of Privilege Vulnerability |
CVE-2021-31985 | Microsoft Defender Remote Code Execution Vulnerability |
CVE-2021-31983 | Paint 3D Remote Code Execution Vulnerability |
CVE-2021-31982 | Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability |
CVE-2021-31980 | Microsoft Intune Management Extension Remote Code Execution Vulnerability |
CVE-2021-31978 | Microsoft Defender Denial of Service Vulnerability |
CVE-2021-31977 | Windows Hyper-V Denial of Service Vulnerability |
CVE-2021-31976 | Server for NFS Information Disclosure Vulnerability |
CVE-2021-31975 | Server for NFS Information Disclosure Vulnerability |
CVE-2021-31974 | Server for NFS Denial of Service Vulnerability |
CVE-2021-31973 | Windows GPSVC Elevation of Privilege Vulnerability |
CVE-2021-31972 | Event Tracing for Windows Information Disclosure Vulnerability |
CVE-2021-31971 | Windows HTML Platform Security Feature Bypass Vulnerability |
CVE-2021-31970 | Windows TCP/IP Driver Security Feature Bypass Vulnerability |
CVE-2021-31969 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |
CVE-2021-31968 | Windows Remote Desktop Services Denial of Service Vulnerability |
CVE-2021-31967 | VP9 Video Extensions Remote Code Execution Vulnerability |
CVE-2021-31966 | Microsoft SharePoint Server Remote Code Execution Vulnerability |
CVE-2021-31965 | Microsoft SharePoint Server Information Disclosure Vulnerability |
CVE-2021-31964 | Microsoft SharePoint Server Spoofing Vulnerability |
CVE-2021-31963 | Microsoft SharePoint Server Remote Code Execution Vulnerability |
CVE-2021-31962 | Kerberos AppContainer Security Feature Bypass Vulnerability |
CVE-2021-31960 | Windows Bind Filter Driver Information Disclosure Vulnerability |
CVE-2021-31959 | Scripting Engine Memory Corruption Vulnerability |
CVE-2021-31958 | Windows NTLM Elevation of Privilege Vulnerability |
CVE-2021-31957 | ASP.NET Denial of Service Vulnerability |
CVE-2021-31956 | Windows NTFS Elevation of Privilege Vulnerability |
CVE-2021-31955 | Windows Kernel Information Disclosure Vulnerability |
CVE-2021-31954 | Windows Common Log File System Driver Elevation of Privilege Vulnerability |
CVE-2021-31953 | Windows Filter Manager Elevation of Privilege Vulnerability |
CVE-2021-31952 | Windows Kernel-Mode Driver Elevation of Privilege Vulnerability |
CVE-2021-31951 | Windows Kernel Elevation of Privilege Vulnerability |
CVE-2021-31950 | Microsoft SharePoint Server Spoofing Vulnerability |
CVE-2021-31949 | Microsoft Outlook Remote Code Execution Vulnerability |
CVE-2021-31948 | Microsoft SharePoint Server Spoofing Vulnerability |
CVE-2021-31946 | Paint 3D Remote Code Execution Vulnerability |
CVE-2021-31945 | Paint 3D Remote Code Execution Vulnerability |
CVE-2021-31944 | 3D Viewer Information Disclosure Vulnerability |
CVE-2021-31943 | 3D Viewer Remote Code Execution Vulnerability |
CVE-2021-31942 | 3D Viewer Remote Code Execution Vulnerability |
CVE-2021-31941 | Microsoft Office Graphics Remote Code Execution Vulnerability |
CVE-2021-31940 | Microsoft Office Graphics Remote Code Execution Vulnerability |
CVE-2021-31939 | Microsoft Excel Remote Code Execution Vulnerability |
CVE-2021-31938 | Microsoft VsCode Kubernetes Tools Extension Elevation of Privilege Vulnerability |
Resources
- Security Update Guide – https://msrc.microsoft.com/update-guide/vulnerability
- Next Generation Windows Announcement is on 24th June 2021
Author
Anoop is Microsoft MVP! He is a Solution Architect in enterprise client management with more than 20 years of experience (calculation done in 2021) in IT. He is a blogger, Speaker, and Local User Group HTMD Community leader. His main focus is on Device Management technologies like SCCM 2012, Current Branch, and Intune. E writes about ConfigMgr, Windows 11, Windows 10, Azure AD, Microsoft Intune, Windows 365, AVD, etc…