尊敬的融亿云用户，您好！

融亿云安全运营中心监测到， 微软发布了2021年11月的例行安全更新公告，共涉及漏洞数55个，其中严重级别漏洞6个，重要级别49个。本次发布涉及Windows操作系统, Azure, Exchange Server, Microsoft Office, Windows Defender, and Visual Studio等多个软件的安全更新。

为避免您的业务受影响，融亿云安全建议您及时开展安全自查，如在受影响范围，请您及时进行更新修复，避免被外部攻击者入侵。

漏洞详情

在此次公告中以下漏洞需要重点关注：

CVE-2021-42321（Microsoft Exchange Server 远程代码执行漏洞）：

该漏洞cvss 8.8，攻击复杂性较低。 据官方描述，该漏洞需要攻击者通过身份验证。漏洞由 command-let (cmdlet) 参数验证问题引起（即 PowerShell 环境中使用的轻量级命令）。 它们由 PowerShell 运行时在命令行提供的自动化脚本上下文中调用，或由 PowerShell 运行时通过 API 以编程方式调用。

CVE-2021-42292（Microsoft Excel 安全机制绕过漏洞）：

该漏洞cvss 7.8，可导致 Excel 打开特制文件时，可能允许绕过安全提示执行任意代码等危害。

CVE-2021-26443（Microsoft Virtual Machine Bus (VMBus) 远程代码执行漏洞）：

该漏洞cvss 9.0，为严重漏洞。该漏洞可通过虚拟机总线 (VMBus) 的来宾到主机逃逸。 来宾 VM 上的用户可以在 VMBus 通道上向主机操作系统发送特制的通信，可能导致在底层主机上执行任意代码。

CVE-2021-38666（Remote Desktop 客户端远程代码执行漏洞）：

该漏洞cvss 8.8，该漏洞可在远程桌面连接的情况下，当受害者使用远程桌面客户端连接到攻击服务器时，控制远程桌面服务器的攻击者可以在 RDP 客户端计算机上触发执行任意代码。

风险等级

高风险

漏洞风险

攻击者利用该漏洞可导致远程代码执行

影响版本

CVE-2021-42321:

Microsoft Exchange Server 2019 Cumulative Update 11

Microsoft Exchange Server 2016 Cumulative Update 22

Microsoft Exchange Server 2019 Cumulative Update 10

Microsoft Exchange Server 2016 Cumulative Update 21

CVE-2021-42292:

Microsoft Office 2013 Service Pack 1 (64-bit editions)

Microsoft Office 2013 Service Pack 1 (32-bit editions)

Microsoft Office 2013 RT Service Pack 1

Microsoft Excel 2013 Service Pack 1 (64-bit editions)

Microsoft Excel 2013 Service Pack 1 (32-bit editions)

Microsoft Excel 2013 RT Service Pack 1

Microsoft Office 2016 (64-bit edition)

Microsoft Office 2016 (32-bit edition)

Microsoft Excel 2016 (64-bit edition)

Microsoft Excel 2016 (32-bit edition)

Microsoft Office LTSC 2021 for 32-bit editions

Microsoft Office LTSC 2021 for 64-bit editions

Microsoft Office LTSC for Mac 2021

Microsoft 365 Apps for Enterprise for 64-bit Systems

Microsoft 365 Apps for Enterprise for 32-bit Systems

Microsoft Office 2019 for Mac

Microsoft Office 2019 for 64-bit editions

Microsoft Office 2019 for 32-bit editions

CVE-2021-26443:

Windows 11 for x64-based Systems

Windows Server, version 20H2 (Server Core Installation)

Windows 10 Version 20H2 for x64-based Systems

Windows Server, version 2004 (Server Core installation)

Windows 10 Version 2004 for x64-based Systems

Windows Server 2022 (Server Core installation)

Windows Server 2022

Windows 10 Version 21H1 for x64-based Systems

Windows 10 Version 1909 for x64-based Systems

Windows Server 2019 (Server Core installation)

Windows Server 2019

Windows 10 Version 1809 for x64-based Systems

CVE-2021-38666:

Windows Server 2012 R2 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 (Server Core installation)

Windows Server 2012

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for x64-based Systems Service Pack 2

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for 32-bit Systems Service Pack 2

Windows RT 8.1

Windows 8.1 for x64-based systems

Windows 8.1 for 32-bit systems

Windows 7 for x64-based Systems Service Pack 1

Windows 7 for 32-bit Systems Service Pack 1

Windows Server 2016 (Server Core installation)

Windows Server 2016

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 for x64-based Systems

Windows 10 for 32-bit Systems

Windows 11 for ARM64-based Systems

Windows 11 for x64-based Systems

Windows Server, version 20H2 (Server Core Installation)

Windows 10 Version 20H2 for ARM64-based Systems

Windows 10 Version 20H2 for 32-bit Systems

Windows 10 Version 20H2 for x64-based Systems

Windows Server, version 2004 (Server Core installation)

Windows 10 Version 2004 for x64-based Systems

Windows 10 Version 2004 for ARM64-based Systems

Windows 10 Version 2004 for 32-bit Systems

Windows Server 2022 (Server Core installation)

Windows Server 2022

Windows 10 Version 21H1 for 32-bit Systems

Windows 10 Version 21H1 for ARM64-based Systems

Windows 10 Version 21H1 for x64-based Systems

Remote Desktop client for Windows Desktop

Windows 10 Version 1909 for ARM64-based Systems

Windows 10 Version 1909 for x64-based Systems

Windows 10 Version 1909 for 32-bit Systems

Windows Server 2019 (Server Core installation)

Windows Server 2019

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems

安全版本

微软2021年11月最新补丁

修复建议

官方已发布漏洞补丁及修复版本，请评估业务是否受影响后，酌情升级至安全版本

【备注】：建议您在升级前做好数据备份工作，避免出现意外

漏洞参考

https://msrc.microsoft.com/update-guide/releaseNote/2021-Nov

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42321

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42292

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26443

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38666