Home » Security Bloggers Network » VERT Threat Alert: February 2022 Patch Tuesday Analysis

VERT Threat Alert: February 2022 Patch Tuesday Analysis

by Tyler Reguly on February 8, 2022

Today’s VERT Alert addresses Microsoft’s February 2022 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-985 on Wednesday, February 9th.

In-The-Wild & Disclosed CVEs

CVE-2022-21989

This month, only a single vulnerability, CVE-2022-21989 has been publicly disclosed and Microsoft is not reporting any known public exploitation. Additionally, Microsoft has stated that the attack complexity of this vulnerability is high because an attacker must “prepare the target environment” for exploitation. Microsoft offers an isolated execution environment by means of AppContainer, which minimizes risk by limiting access to resources and other applications. In this case, however, Microsoft has noted that the attack can be performed from an AppContainer and allow the attacker to execute code that allows access to resources that they shouldn’t normally be able to access.

Microsoft has rated this as Exploitation More Likely on the latest software release on the Exploitability Index.

CVE Breakdown by Tag

While historical Microsoft Security Bulletin groupings are gone, Microsoft vulnerabilities are tagged with an identifier. This list provides a breakdown of the CVEs on a per tag basis. Vulnerabilities are also colour coded to aid with identifying key issues.

Traditional Software
Mobile Software
Cloud or Cloud Adjacent
Vulnerabilities that are being exploited or that have been disclosed will be bold.

Tag	CVE Count	CVEs
Windows User Account Profile	1	CVE-2022-22002
Microsoft Dynamics	1	CVE-2022-21957
Kestrel Web Server	1	CVE-2022-21986
Microsoft Office SharePoint	3	CVE-2022-21987, CVE-2022-21968, CVE-2022-22005
Microsoft Windows Codecs Library	4	CVE-2022-21844, CVE-2022-21926, CVE-2022-21927, CVE-2022-22709
Visual Studio Code	1	CVE-2022-21991
SQL Server	1	CVE-2022-23276
Microsoft Office Visio	1	CVE-2022-21988
Microsoft Teams	1	CVE-2022-21965
Microsoft Office Excel	1	CVE-2022-22716
Windows Kernel	2	CVE-2022-21989, CVE-2022-21992
Windows DWM Core Library	1	CVE-2022-21994
Windows Remote Access Connection Manager	2	CVE-2022-21985, CVE-2022-22001
Microsoft Office	3	CVE-2022-22003, CVE-2022-22004, CVE-2022-23252
Windows Remote Procedure Call (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Tyler Reguly. Read the original post at: https://www.tripwire.com/state-of-security/featured/vert-threat-alert-february-2022-patch-tuesday-analysis/

February 8, 2022February 8, 2022 Tyler Reguly CVE, Featured Articles, Patch Tuesday, VERT

Tyler Reguly

Tyler Reguly is Associate Director, Security R&D at Fortra, responsible for overseeing a team of researchers that provide the security expertise for the company’s integrity and compliance monitoring solution. Tyler joined Fortra in 2022 when the company acquired Tripwire, where Tyler had been a part of the research team for more than fifteen years. In addition to security research, Tyler has worked closely with Fanshawe College, from which he graduated with a diploma in Computer Systems Technology, developing five courses including subjects like Advanced Hacker Techniques & Tactics, Hacking and Exploits, Malware Research, Evolving Technologies and Threats, and Python Programming. He has also taught all five courses that he developed on multiple occasions.

tyler-reguly has 119 posts and counting.See all posts by tyler-reguly