NATIONAL CRITICAL INFORMATION INFRASTRUCTURE PROTECTION CENTRE (NCIIPC)

A Unit of National Technical Research Organisation




                                         

  CVE - KB Correlation, Nov 2021  



Published on: 12 Nov, 2021

Cyber Security Vulnerabilities are usually identified using its unique CVE (Common Vulnerabilities and Exposures) number. However, Microsoft's SCCM (System Center Configuration Manager) provides patch information in the form of Knowledge Base (KB) Articles that are associated to one or more CVEs. Microsoft released updates to address multiple vulnerabilities in its software for the month of November.

Below is the list of CVE IDs, Base Score, Temporal Score and Knowledge Base IDs as released by Microsoft during November 2021:-

S No. CVE Base Score Temporal Score KB
1. CVE-2021-26443 9 7.8 KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
2. CVE-2021-26444 3.3 2.9 Information
3. CVE-2021-36957 7.8 6.8 KB5007192, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
4. CVE-2021-3711 N/A N/A Release Notes, Release Notes, Release Notes, Release Notes
5. CVE-2021-38631 4.4 3.9 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
6. CVE-2021-38665 7.4 6.4 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, Release Notes, KB5007189, KB5007206
7. CVE-2021-38666 8.8 7.7 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
8. CVE-2021-40442 7.8 6.8 KB5002065, KB5002072, KB5002056, Click to Run, Click to Run, KB5002053, KB5002063
9. CVE-2021-41349 6.5 5.7 KB5007409
10. CVE-2021-41351 4.3 3.9 KB5007186, KB5007215, KB5007189, KB5007206
11. CVE-2021-41351 2.4 2.2 KB5007186, KB5007215, KB5007189, KB5007206
12. CVE-2021-41356 7.5 6.7 KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
13. CVE-2021-41366 7.8 6.8 KB5007247, KB5007255, KB5007260, KB5007245, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
14. CVE-2021-41367 7.8 6.8 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
15. CVE-2021-41368 6.1 5.3 KB5002038, KB5002032, Click to Run, Click to Run
16. CVE-2021-41370 7.8 6.8 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
17. CVE-2021-41371 4.4 3.9 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
18. CVE-2021-41372 7.6 6.8 KB5007903
19. CVE-2021-41373 5.5 5 Release Notes
20. CVE-2021-41374 6.7 5.8 Release Notes
21. CVE-2021-41375 4.4 3.9 Release Notes
22. CVE-2021-41376 2.3 2 Release Notes
23. CVE-2021-41377 7.8 6.8 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
24. CVE-2021-41378 7.8 6.8 KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
25. CVE-2021-41379 5.5 4.8 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
26. CVE-2021-42274 6.8 5.9 KB5007192, KB5007215, KB5007186, KB5007205, KB5007206
27. CVE-2021-42275 8.8 7.7 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007207, KB5007186, KB5007205, KB5007189, KB5007206
28. CVE-2021-42276 7.8 6.8 KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
29. CVE-2021-42277 5.5 4.8 KB5007275, Release Notes, Release Notes, Release Notes, Release Notes, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
30. CVE-2021-42278 7.5 6.5 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007186, KB5007205, KB5007206
31. CVE-2021-42279 4.2 3.8 KB5007192, KB5007207, KB5007206, KB5007186, KB5007189, KB5007205, KB5007215
32. CVE-2021-42280 5.5 4.8 KB5007192, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
33. CVE-2021-42282 7.5 6.5 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007186, KB5007205, KB5007206
34. CVE-2021-42283 8.8 7.7 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
35. CVE-2021-42284 6.8 6.1 KB5007247, KB5007255, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
36. CVE-2021-42285 7.8 6.8 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007192, KB5007207, KB5007215, KB5007186, KB5007205, KB5007189, KB5007206
37. CVE-2021-42286 7.8 6.8 KB5007186
38. CVE-2021-42287 7.5 6.5 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007186, KB5007205, KB5007206
39. CVE-2021-42288 5.7 5.1 KB5007186, KB5007189, KB5007206
40. CVE-2021-42291 7.5 6.5 KB5007247, KB5007255, KB5007260, KB5007245, KB5007236, KB5007233, KB5007263, KB5007246, KB5007192, KB5007186, KB5007205, KB5007206
41. CVE-2021-42292 7.8 7 KB5002035, KB5002035, KB5002072, KB4486670, KB5002056, Click to Run, Click to Run
42. CVE-2021-42296 7.8 6.8 Click to Run, Click to Run
43. CVE-2021-42298 7.8 6.8 Release Notes
44. CVE-2021-42300 6 5.2 Release Notes
45. CVE-2021-42301 3.3 2.9 Information
46. CVE-2021-42302 6.6 5.8 Information
47. CVE-2021-42303 6.6 5.8 Information
48. CVE-2021-42304 6.6 5.8 Information
49. CVE-2021-42305 6.5 5.7 KB5007409
50. CVE-2021-42316 8.7 7.6 KB5008479, KB5008478
51. CVE-2021-42316 N/A N/A KB5008479, KB5008478
52. CVE-2021-42319 4.7 4.1 Release Notes, Release Notes, Release Notes, Release Notes
53. CVE-2021-42321 8.8 7.7 KB5007409
54. CVE-2021-42322 7.8 6.8 Release Notes
55. CVE-2021-42323 3.3 2.9 Information
56. CVE-2021-43208 7.8 6.8 Release Notes
57. CVE-2021-43209 7.8 6.8 Release Notes

References:


  1. https://msrc.microsoft.com/update-guide/releaseNote/2021-Nov
  2. https://portal.msrc.microsoft.com/en-us/security-guidance