VERT Threat Alert: January 2021 Patch Tuesday Analysis
The State of Security
Today’s VERT Alert addresses Microsoft’s January 2021 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-922 on Wednesday, January 13th.
In-The-Wild & Disclosed CVEs
A vulnerability in the Microsoft Malware Protection Engine (MMPE) is currently seeing active exploitation. Since the MMPE is updated regularly with malware definitions, your products have likely already updated. If you want to be certain, check to see that your MMPE version is 1.1.17700.4 or later. If you have a lower version, you should force a manual software update.
Microsoft has rated this as Exploit Detected on the latest software release on the Exploitability Index.