Critical Vulnerabilities - CVE-2021

Tharaka Wanigasekera 1 Reputation point
2021-02-11T00:28:22.493+00:00

I would like to know whether we are safe if we are using azure cloud services from the following critical vulnerabilities. We already applied Dotnet core patches.

CVE-2021-2412
CVE-2021-24081
CVE-2021-1722
CVE-2021-26701
CVE-2021-24094
CVE-2021-24093
CVE-2021-24091
CVE-2021-24088
CVE-2021-24078
CVE-2021-24077
CVE-2021-24074

Affected Systems/services:
.NET 5.0
.NET Core 3.1
.NET Core 2.1
Windows Server 2016 (Server Core installation)
Windows Server 2016
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems
Windows 10 for x64-based Systems
Windows 10 for 32-bit Systems
Windows Server, version 20H2 (Server Core Installation)
Windows 10 Version 20H2 for ARM64-based Systems
Windows 10 Version 20H2 for 32-bit Systems
Windows 10 Version 20H2 for x64-based Systems
Windows Server, version 2004 (Server Core installation)
Windows 10 Version 2004 for x64-based Systems
Windows 10 Version 2004 for ARM64-based Systems
Windows 10 Version 2004 for 32-bit Systems
Windows Server, version 1909 (Server Core installation)
Windows 10 Version 1909 for ARM64-based Systems
Windows 10 Version 1909 for x64-based Systems
Windows Server 2019 (Server Core installation)
Windows Server 2019
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 1809 for 32-bit Systems
Windows Server 2012 R2 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 (Server Core installation)
Windows Server 2012
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows RT 8.1
Windows 8.1 for x64-based systems
Windows 8.1 for 32-bit systems
Windows 7 for x64-based Systems Service Pack 1
Windows 7 for 32-bit Systems Service Pack 1
Windows 10 Version 1909 for 32-bit Systems
Windows 10 Version 1803 for ARM64-based Systems
Windows 10 Version 1803 for x64-based Systems
Windows 10 Version 1803 for 32-bit Systems

This is the version of the VM
66700-image-6.png

Azure Cloud Services
Azure Cloud Services
An Azure platform as a service offer that is used to deploy web and cloud applications.
704 questions
{count} votes

1 answer

Sort by: Most helpful
  1. prmanhas-MSFT 17,906 Reputation points Microsoft Employee
    2021-02-12T09:17:41.727+00:00

    @TharakaWanigasekera-7687 Apologies for the delay in response and all the inconvenience caused because of the issue.

    A core component of every cyber risk and security program is the identification and analysis of vulnerabilities.

    Security Center regularly checks your connected machines to ensure they're running vulnerability assessment tools.This tool make sure that it can detect vulnerabilites if any and remediate it.

    You can refer to this doc for more info.

    Also Microsoft Security Response Center (MSRC) investigates all reports of security vulnerabilities affecting Microsoft products and services, and provides the information here as part of the ongoing effort to help you manage security risks and help keep your systems protected.

    You can find list here as well.

    Hope it helps!!!

    Please "Accept as Answer" if it helped so it can help others in community looking for help on similar topic.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.