99久久国产综合精品国_亚洲av日韩aⅴ电影_午夜福利在线电影_亚洲aⅤ色欲久久一区二区三区_91九色蝌蚪国产精品_亚洲av无码乱码在线观看四虎_4国产精品无码制服丝袜_亚洲Av成人五月天在线观看_牛牛成人永久免费视频_午夜福利在线资源


【漏洞通告】微軟6月安全更新多個產(chǎn)品高危漏洞風(fēng)險通告

2022-06-16 10:53:38 漏洞播報 0個評論

安全通告

微軟6月安全更新多個產(chǎn)品高危漏洞風(fēng)險通告

發(fā)布日期:2022-6-16

?

漏洞描述

6月16日,監(jiān)測到微軟發(fā)布6月安全更新補丁,修復(fù)了55個安全問題,涉及Windows、Microsoft Office、SQL Server、.NET framework、HEVC Video Extensions等廣泛使用的產(chǎn)品,其中包括權(quán)限提升、遠(yuǎn)程代碼執(zhí)行等高危漏洞類型。

本月微軟月度更新修復(fù)的漏洞中,嚴(yán)重程度為關(guān)鍵(Critical)的漏洞有3個,重要(Important)漏洞有52個,其中包括1個0day漏洞:

Microsoft Windows支持診斷工具 (MSDT) 遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-30190)

請相關(guān)用戶盡快更新補丁進(jìn)行防護(hù),完整漏洞列表請參考附錄。

漏洞編號

根據(jù)產(chǎn)品流行度和漏洞重要性篩選出此次更新中包含影響較大的漏洞,請相關(guān)用戶重點進(jìn)行關(guān)注:

Microsoft Windows支持診斷工具 (MSDT) 遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-30190)

Windows Installer 權(quán)限提升漏洞(CVE-2022-30147)

Windows Network File System遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-30136)

Windows Advanced Local Procedure Call權(quán)限提升漏洞(CVE-2022-30160)

Windows Kerberos權(quán)限提升漏洞(CVE-2022-30165)

Windows 輕量級目錄訪問協(xié)議 (LDAP) 遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-30161)

Windows Hyper-V 遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-30163)

Microsoft SharePoint Server 遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-30157)

漏洞危害

Microsoft Windows支持診斷工具?(MSDT)?遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-30190):

MSDT(Microsoft 支持診斷工具)是內(nèi)置于 Windows 操作系統(tǒng)中的診斷和故障排除工具。本地攻擊者可構(gòu)造惡意的office文檔利用Microsoft Word 的遠(yuǎn)程模板功能獲取包含嵌入式 JavaScript代碼的HTML文件,該文件利用’ms-msdt’ URI來執(zhí)行惡意PowerShell代碼。值得注意的是,該漏洞在宏被禁用的情況下,仍能通過MSDT(Microsoft Support Diagnostics Tool)功能執(zhí)行代碼,在資源管理器中的預(yù)覽功能打開的情況下,當(dāng)惡意文件保存為RTF格式時,甚至無需打開文件,通過資源管理器中的預(yù)覽選項卡即可觸發(fā)漏洞在目標(biāo)機器上執(zhí)行powershell代碼。該漏洞PoC及技術(shù)細(xì)節(jié)已被披露,且已檢測到存在在野利用。

官方通告鏈接:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30190

 

Windows Installer?權(quán)限提升漏洞(CVE-2022-30147):

Windows Installer存在權(quán)限提升漏洞,由于Windows Installer中的應(yīng)用程序未實行正確的安全限制,具有低權(quán)限的本地攻擊者通過利用該漏洞繞過安全限制,從而在目標(biāo)系統(tǒng)上提升至SYSTEM權(quán)限,且無需用戶交互。

官方通告鏈接:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30147

 

Windows Network File System遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-30136):

Windows Network File System存在遠(yuǎn)程代碼執(zhí)行漏洞,由于對Windows Network File System中用戶提供的輸入的驗證存在缺陷,未經(jīng)身份驗證的遠(yuǎn)程攻擊者可利用該漏洞向目標(biāo)系統(tǒng)發(fā)送特制的NFS請求,最終導(dǎo)致在目標(biāo)系統(tǒng)上任意執(zhí)行代碼,且無需用戶交互。CVSS評分為9.8。

官方通告鏈接:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30136

 

Windows Advanced Local Procedure Call權(quán)限提升漏洞(CVE-2022-30160):

Windows Advanced Local Procedure Call存在權(quán)限提升漏洞,由于Windows Advanced Local Procedure Call中的應(yīng)用程序未實行正確的安全限制,具有低權(quán)限的本地攻擊者通過利用該漏洞繞過安全限制,從而在目標(biāo)系統(tǒng)上提升至SYSTEM權(quán)限,且無需用戶交互。

官方通告鏈接:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30160

 

Windows Kerberos權(quán)限提升漏洞(CVE-2022-30165):

Windows Kerberos存在權(quán)限提升漏洞,當(dāng)網(wǎng)絡(luò)通過CredSSP建立遠(yuǎn)程憑據(jù)保護(hù)連接時,經(jīng)過身份驗證的遠(yuǎn)程攻擊者可以利用此漏洞進(jìn)行權(quán)限提升,之后欺騙Kerberos進(jìn)行登錄。CVSS評分為8.8。

官方通告鏈接:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30165

 

Windows?輕量級目錄訪問協(xié)議?(LDAP)?遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-30161):

未經(jīng)身份驗證的遠(yuǎn)程攻擊者可以通過誘導(dǎo)用戶將輕量級目錄訪問協(xié)議 (LDAP) 客戶端與惡意LDAP服務(wù)器相連接,最終導(dǎo)致惡意服務(wù)器在LDAP客戶端中任意執(zhí)行代碼。CVSS評分為8.8。

官方通告鏈接:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30161

 

Windows Hyper-V?遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-30163):

Windows Hyper-V是Microsoft的本地虛擬機管理程序,具有低權(quán)限的遠(yuǎn)程攻擊者可通過在Hyper-V guest上運行特制的應(yīng)用程序,最終導(dǎo)致在Hyper-V主機系統(tǒng)執(zhí)行任意代碼。

官方通告鏈接:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30163

 

Microsoft SharePoint Server?遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-30157):

經(jīng)過身份驗證的攻擊者通過使用特制的代碼創(chuàng)建站點,成功利用漏洞可導(dǎo)致在目標(biāo)服務(wù)器上遠(yuǎn)程執(zhí)行代碼。在此過程中,攻擊者還需要具有在易受攻擊的SharePoint服務(wù)器上創(chuàng)建頁面的權(quán)限。CVSS評分為8.8。

官方通告鏈接:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30157

漏洞等級

高危

受影響版本

漏洞編號 受影響產(chǎn)品版本
CVE-2022-30190 Windows Server 2012 R2 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 (Server Core installation)

Windows Server 2012

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows RT 8.1

Windows 8.1 for x64-based systems

Windows 8.1 for 32-bit systems

Windows 7 for x64-based Systems Service Pack 1

Windows 7 for 32-bit Systems Service Pack 1

Windows Server 2016 ?(Server Core installation)

Windows Server 2016

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 for x64-based Systems

Windows 10 for 32-bit Systems

Windows 10 Version 21H2 for x64-based Systems

Windows 10 Version 21H2 for ARM64-based Systems

Windows 10 Version 21H2 for 32-bit Systems

Windows 11 for ARM64-based Systems

Windows 11 for x64-based Systems

Windows Server, version 20H2 (Server Core Installation)

Windows 10 Version 20H2 for ARM64-based Systems

Windows 10 Version 20H2 for 32-bit Systems

Windows 10 Version 20H2 for x64-based Systems

Windows Server 2022 (Server Core installation)

Windows Server 2022

Windows 10 Version 21H1 for 32-bit Systems

Windows 10 Version 21H1 for ARM64-based Systems

Windows 10 Version 21H1 for x64-based Systems

Windows Server 2019 ?(Server Core installation)

Windows Server 2019

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems
CVE-2022-30147 Windows Server 2012 R2 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 (Server Core installation)

Windows Server 2012

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for x64-based Systems Service Pack 2

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for 32-bit Systems Service Pack 2

Windows RT 8.1

Windows 8.1 for x64-based systems

Windows 8.1 for 32-bit systems

Windows 7 for x64-based Systems Service Pack 1

Windows 7 for 32-bit Systems Service Pack 1

Windows Server 2016 ?(Server Core installation)

Windows Server 2016

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 for x64-based Systems

Windows 10 for 32-bit Systems

Windows 10 Version 21H2 for x64-based Systems

Windows 10 Version 21H2 for ARM64-based Systems

Windows 10 Version 21H2 for 32-bit Systems

Windows 11 for ARM64-based Systems

Windows 11 for x64-based Systems

Windows Server, version 20H2 (Server Core Installation)

Windows 10 Version 20H2 for ARM64-based Systems

Windows 10 Version 20H2 for 32-bit Systems

Windows 10 Version 20H2 for x64-based Systems

Windows Server 2022 Azure Edition Core Hotpatch

Windows Server 2022 (Server Core installation)

Windows Server 2022

Windows 10 Version 21H1 for 32-bit Systems

Windows 10 Version 21H1 for ARM64-based Systems

Windows 10 Version 21H1 for x64-based Systems

Windows Server 2019 ?(Server Core installation)

Windows Server 2019

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems
CVE-2022-30136 Windows Server 2012 R2 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 (Server Core installation)

Windows Server 2012

Windows Server 2016 ?(Server Core installation)

Windows Server 2016

Windows Server 2019 ?(Server Core installation)

Windows Server 2019
CVE-2022-30160 Windows Server 2012 R2 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 (Server Core installation)

Windows Server 2012

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for x64-based Systems Service Pack 2

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for 32-bit Systems Service Pack 2

Windows RT 8.1

Windows 8.1 for x64-based systems

Windows 8.1 for 32-bit systems

Windows 7 for x64-based Systems Service Pack 1

Windows 7 for 32-bit Systems Service Pack 1

Windows Server 2016 ?(Server Core installation)

Windows Server 2016

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 for x64-based Systems

Windows 10 for 32-bit Systems

Windows 10 Version 21H2 for x64-based Systems

Windows 10 Version 21H2 for ARM64-based Systems

Windows 10 Version 21H2 for 32-bit Systems

Windows 11 for ARM64-based Systems

Windows 11 for x64-based Systems

Windows Server, version 20H2 (Server Core Installation)

Windows 10 Version 20H2 for ARM64-based Systems

Windows 10 Version 20H2 for 32-bit Systems

Windows 10 Version 20H2 for x64-based Systems

Windows Server 2022 Azure Edition Core Hotpatch

Windows Server 2022 (Server Core installation)

Windows Server 2022

Windows 10 Version 21H1 for 32-bit Systems

Windows 10 Version 21H1 for ARM64-based Systems

Windows 10 Version 21H1 for x64-based Systems

Windows Server 2019 ?(Server Core installation)

Windows Server 2019

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems
CVE-2022-30165 Windows Server 2016 ?(Server Core installation)

Windows Server 2016

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 Version 21H2 for x64-based Systems

Windows 10 Version 21H2 for ARM64-based Systems

Windows 10 Version 21H2 for 32-bit Systems

Windows 11 for ARM64-based Systems

Windows 11 for x64-based Systems

Windows Server, version 20H2 (Server Core Installation)

Windows 10 Version 20H2 for ARM64-based Systems

Windows 10 Version 20H2 for 32-bit Systems

Windows 10 Version 20H2 for x64-based Systems

Windows Server 2022 Azure Edition Core Hotpatch

Windows Server 2022 (Server Core installation)

Windows Server 2022

Windows 10 Version 21H1 for 32-bit Systems

Windows 10 Version 21H1 for ARM64-based Systems

Windows 10 Version 21H1 for x64-based Systems

Windows Server 2019 ?(Server Core installation)

Windows Server 2019

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems
CVE-2022-30161 Windows Server 2012 R2 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 (Server Core installation)

Windows Server 2012

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for x64-based Systems Service Pack 2

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for 32-bit Systems Service Pack 2

Windows RT 8.1

Windows 8.1 for x64-based systems

Windows 8.1 for 32-bit systems

Windows 7 for x64-based Systems Service Pack 1

Windows 7 for 32-bit Systems Service Pack 1

Windows Server 2016 ?(Server Core installation)

Windows Server 2016

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 for x64-based Systems

Windows 10 for 32-bit Systems

Windows 10 Version 21H2 for x64-based Systems

Windows 10 Version 21H2 for ARM64-based Systems

Windows 10 Version 21H2 for 32-bit Systems

Windows 11 for ARM64-based Systems

Windows 11 for x64-based Systems

Windows Server, version 20H2 (Server Core Installation)

Windows 10 Version 20H2 for ARM64-based Systems

Windows 10 Version 20H2 for 32-bit Systems

Windows 10 Version 20H2 for x64-based Systems

Windows Server 2022 Azure Edition Core Hotpatch

Windows Server 2022 (Server Core installation)

Windows Server 2022

Windows 10 Version 21H1 for 32-bit Systems

Windows 10 Version 21H1 for ARM64-based Systems

Windows 10 Version 21H1 for x64-based Systems

Windows Server 2019 ?(Server Core installation)

Windows Server 2019

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems
CVE-2022-30163 Windows Server 2012 R2 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 (Server Core installation)

Windows Server 2012

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows 8.1 for x64-based systems

Windows 7 for x64-based Systems Service Pack 1

Windows Server 2016 ?(Server Core installation)

Windows Server 2016

Windows 10 Version 1607 for x64-based Systems

Windows 10 for x64-based Systems

Windows 10 Version 21H2 for x64-based Systems

Windows 11 for x64-based Systems

Windows Server, version 20H2 (Server Core Installation)

Windows 10 Version 20H2 for x64-based Systems

Windows Server 2022 Azure Edition Core Hotpatch

Windows Server 2022 (Server Core installation)

Windows Server 2022

Windows 10 Version 21H1 for x64-based Systems

Windows Server 2019 ?(Server Core installation)

Windows Server 2019

Windows 10 Version 1809 for x64-based Systems
CVE-2022-30157 Microsoft SharePoint Server Subscription Edition

Microsoft SharePoint Server 2019

Microsoft SharePoint Enterprise Server 2013 Service Pack 1

Microsoft SharePoint Enterprise Server 2016

?

?

復(fù)方案

目前微軟官方已針對受支持的產(chǎn)品版本發(fā)布了修復(fù)以上漏洞的安全補丁,強烈建議受影響用戶盡快安裝補丁進(jìn)行防護(hù),官方下載鏈接:

https://msrc.microsoft.com/update-guide/en-us/releaseNote/2022-Jun

注:由于網(wǎng)絡(luò)問題、計算機環(huán)境問題等原因,Windows Update的補丁更新可能出現(xiàn)失敗。用戶在安裝補丁后,應(yīng)及時檢查補丁是否成功更新。

右鍵點擊Windows圖標(biāo),選擇“設(shè)置(N)”,選擇“更新和安全”-“Windows更新”,查看該頁面上的提示信息,也可點擊“查看更新歷史記錄”查看歷史更新情況。

針對未成功安裝的更新,可點擊更新名稱跳轉(zhuǎn)到微軟官方下載頁面,建議用戶點擊該頁面上的鏈接,轉(zhuǎn)到“Microsoft更新目錄”網(wǎng)站下載獨立程序包并安裝。

 

附錄:漏洞列表

影響產(chǎn)品 CVE編號 漏洞標(biāo)題 嚴(yán)重程度
Role: Windows Hyper-V CVE-2022-30163 Windows Hyper-V 遠(yuǎn)程執(zhí)行代碼漏洞 Critical
Windows LDAP – Lightweight Directory Access Protocol CVE-2022-30139 Windows 輕量級目錄訪問協(xié)議 (LDAP) 遠(yuǎn)程代碼執(zhí)行漏洞 Critical
Windows Network File System CVE-2022-30136 Windows 網(wǎng)絡(luò)文件系統(tǒng)遠(yuǎn)程代碼執(zhí)行漏洞 Critical
.NET and Visual Studio CVE-2022-30184 .NET 和 Visual Studio 信息泄露漏洞 Important
Azure OMI CVE-2022-29149 Azure 開放管理基礎(chǔ)結(jié)構(gòu) (OMI) 特權(quán)提升漏洞 Important
Azure Real Time Operating System CVE-2022-30179 Azure RTOS GUIX Studio 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Azure Real Time Operating System CVE-2022-30178 Azure RTOS GUIX Studio 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Azure Real Time Operating System CVE-2022-30180 Azure RTOS GUIX Studio 信息泄露漏洞 Important
Azure Real Time Operating System CVE-2022-30177 Azure RTOS GUIX Studio 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Azure Service Fabric Container CVE-2022-30137 Azure Service Fabric 容器特權(quán)提升漏洞 Important
Intel CVE-2022-21127 Intel:CVE-2022-21127 特殊寄存器緩沖區(qū)數(shù)據(jù)采樣更新(SRBDS 更新) Important
Intel CVE-2022-21123 英特爾:CVE-2022-21123 共享緩沖區(qū)數(shù)據(jù)讀取 (SBDR) Important
Intel CVE-2022-21125 英特爾:CVE-2022-21125 共享緩沖區(qū)數(shù)據(jù)采樣 (SBDS) Important
Intel CVE-2022-21166 英特爾:CVE-2022-21166 設(shè)備寄存器部分寫入 (DRPW) Important
Microsoft Office CVE-2022-30159 Microsoft Office 信息泄露漏洞 Important
Microsoft Office CVE-2022-30171 Microsoft Office 信息泄露漏洞 Important
Microsoft Office CVE-2022-30172 Microsoft Office 信息泄露漏洞 Important
Microsoft Office CVE-2022-30174 Microsoft Office 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Microsoft Office Excel CVE-2022-30173 Microsoft Excel 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Microsoft Office SharePoint CVE-2022-30158 Microsoft SharePoint Server 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Microsoft Office SharePoint CVE-2022-30157 Microsoft SharePoint Server 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Microsoft Windows ALPC CVE-2022-30160 Windows 高級本地過程調(diào)用特權(quán)提升漏洞 Important
Microsoft Windows Codecs Library CVE-2022-29119 HEVC 視頻擴展遠(yuǎn)程代碼執(zhí)行漏洞 Important
Microsoft Windows Codecs Library CVE-2022-30188 HEVC 視頻擴展遠(yuǎn)程代碼執(zhí)行漏洞 Important
Microsoft Windows Codecs Library CVE-2022-30167 AV1視頻擴展遠(yuǎn)程代碼執(zhí)行漏洞 Important
Microsoft Windows Codecs Library CVE-2022-30193 AV1視頻擴展遠(yuǎn)程代碼執(zhí)行漏洞 Important
Microsoft Windows Codecs Library CVE-2022-29111 HEVC 視頻擴展遠(yuǎn)程代碼執(zhí)行漏洞 Important
Microsoft Windows Codecs Library CVE-2022-22018 HEVC 視頻擴展遠(yuǎn)程代碼執(zhí)行漏洞 Important
Remote Volume Shadow Copy Service (RVSS) CVE-2022-30154 Microsoft 文件服務(wù)器卷影復(fù)制代理服務(wù) (RVSS) 特權(quán)提升漏洞 Important
SQL Server CVE-2022-29143 Microsoft SQL Server 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Windows Ancillary Function Driver for WinSock CVE-2022-30151 WinSock 特權(quán)提升漏洞的 Windows 輔助功能驅(qū)動程序 Important
Windows App Store CVE-2022-30168 Microsoft Photos App 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Windows Autopilot CVE-2022-30189 Windows Autopilot 設(shè)備管理和注冊客戶端欺騙漏洞 Important
Windows Container Isolation FS Filter Driver CVE-2022-30131 Windows 容器隔離 FS 過濾器驅(qū)動程序特權(quán)提升漏洞 Important
Windows Container Manager Service CVE-2022-30132 Windows Container Manager 服務(wù)特權(quán)提升漏洞 Important
Windows Defender CVE-2022-30150 Windows Defender Remote Credential Guard 特權(quán)提升漏洞 Important
Windows Encrypting File System (EFS) CVE-2022-30145 Windows 加密文件系統(tǒng) (EFS) 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Windows File History Service CVE-2022-30142 Windows 文件歷史記錄遠(yuǎn)程執(zhí)行代碼漏洞 Important
Windows Installer CVE-2022-30147 Windows Installer 特權(quán)提升漏洞 Important
Windows iSCSI CVE-2022-30140 Windows iSCSI 發(fā)現(xiàn)服務(wù)遠(yuǎn)程代碼執(zhí)行漏洞 Important
Windows Kerberos CVE-2022-30164 Kerberos AppContainer 安全功能繞過漏洞 Important
Windows Kerberos CVE-2022-30165 Windows Kerberos 特權(quán)提升漏洞 Important
Windows Kernel CVE-2022-30162 Windows 內(nèi)核信息泄露漏洞 Important
Windows Kernel CVE-2022-30155 Windows 內(nèi)核拒絕服務(wù)漏洞 Important
Windows LDAP – Lightweight Directory Access Protocol CVE-2022-30143 Windows 輕量級目錄訪問協(xié)議 (LDAP) 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Windows LDAP – Lightweight Directory Access Protocol CVE-2022-30161 Windows 輕量級目錄訪問協(xié)議 (LDAP) 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Windows LDAP – Lightweight Directory Access Protocol CVE-2022-30141 Windows 輕量級目錄訪問協(xié)議 (LDAP) 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Windows LDAP – Lightweight Directory Access Protocol CVE-2022-30153 Windows 輕量級目錄訪問協(xié)議 (LDAP) 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Windows LDAP – Lightweight Directory Access Protocol CVE-2022-30149 Windows 輕量級目錄訪問協(xié)議 (LDAP) 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Windows LDAP – Lightweight Directory Access Protocol CVE-2022-30146 Windows 輕量級目錄訪問協(xié)議 (LDAP) 遠(yuǎn)程代碼執(zhí)行漏洞 Important
Windows Local Security Authority Subsystem Service CVE-2022-30166 本地安全機構(gòu)子系統(tǒng)服務(wù)提權(quán)漏洞 Important
Windows Media CVE-2022-30135 Windows Media Center 特權(quán)提升漏洞 Important
Windows Network Address Translation (NAT) CVE-2022-30152 Windows 網(wǎng)絡(luò)地址轉(zhuǎn)換 (NAT) 拒絕服務(wù)漏洞 Important
Windows PowerShell CVE-2022-30148 Windows 所需狀態(tài)配置 (DSC) 信息泄露漏洞 Important
Windows SMB CVE-2022-32230 Windows SMB 拒絕服務(wù)漏洞 Important

 

參考鏈接

  • https://msrc.microsoft.com/update-guide/releaseNote/2022-Jun
上一篇
下一篇

聯(lián)系我們:cert@chaosec.com