The Microsoft January 2021 security updates have been released and consist of 83 CVEs. Of these 83 CVEs, 10 are rated Critical and 73 are rated Important in severity. At the time of release, CVE-2021-1648 is publicly known and CVE-2021-1647 is known to be actively exploited.
The updates apply to the following: Microsoft Windows, Microsoft Edge (EdgeHTML-based), Microsoft Office and Microsoft Office Services and Web Apps, Microsoft Windows Codecs Library, Visual Studio, SQL Server, Microsoft Malware Protection Engine, NET Core, .NET Repository, ASP .NET, and Azure.
If you are using Windows Update, the latest SSU (KB4598481) will be offered to you automatically. To get the standalone package for the latest SSU, search for it in the Microsoft Update Catalog. For information about Servicing Stack updates see Servicing Stack Updates (SSU).
See Dustin Childs review and analysis in Zero Day Initiative -- The January 2021 Security Update Revuew.
January Security Updates Guide
The updates apply to the following: Microsoft Windows, Microsoft Edge (EdgeHTML-based), Microsoft Office and Microsoft Office Services and Web Apps, Microsoft Windows Codecs Library, Visual Studio, SQL Server, Microsoft Malware Protection Engine, NET Core, .NET Repository, ASP .NET, and Azure.
If you are using Windows Update, the latest SSU (KB4598481) will be offered to you automatically. To get the standalone package for the latest SSU, search for it in the Microsoft Update Catalog. For information about Servicing Stack updates see Servicing Stack Updates (SSU).
See Dustin Childs review and analysis in Zero Day Initiative -- The January 2021 Security Update Revuew.
January Security Updates Guide