欢迎user
2022年10月11日,新华三攻防实验室威胁预警团队监测发现Microsoft官方发布了10月安全更新,此次安全更新共发布了84个漏洞的补丁,主要覆盖了以下产品和组件:Active Directory Domain Services、Azure、Microsoft Office、Microsoft Office SharePoint、Windows Hyper-V、Visual Studio Code、Windows Active Directory Certificate Services、Windows Defender、Windows DHCP Client、Windows Group Policy、Windows Kernel、Windows NTFS、Windows NTLM、Windows Point-to-Point Tunneling Protocol、Windows TCP/IP和Windows Win32K等。在此次更新的补丁中,有13个漏洞被微软标记为严重漏洞。对此,新华三攻防实验室建议广大用户及时做好资产自查以及预防工作,以免遭受黑客攻击。
由于Kubernetes集群启用了Azure Arc的集群连接功能,未经身份验证的恶意攻击者可成功利用此漏洞将普通权限提升至管理员权限,从而获取对Kubernetes集群的管理控制权限。
经过身份验证且拥有Sharepoint管理列表权限的恶意攻击者,可对Microsoft SharePoint Server目标进行远程代码执行,从而获取对Microsoft SharePoint Server的管理控制权限。
CVE编号 | 受影响产品 |
CVE-2022-41033 | Windows 11 Windows 11 22H2 Server 2022 Server 2019 Windows 10 Server 2016 Server 2012 R2 Server 2012 Windows 8.1 |
CVE-2022-38000 | Windows 11 Windows 11 22H2 Server 2022 Server 2019 Windows 10 Server 2016 Server 2012 R2 Server 2012 Windows 8.1 |
CVE-2022-37982 | Windows 11 Windows 11 22H2 Server 2022 Server 2019 Windows 10 Server 2016 Server 2012 R2 Server 2012 Windows 8.1 |
CVE-2022-37976 | Server 2022 Server 2019 Server 2016 Server 2012 R2 Server 2012 |
CVE-2022-38016 | Windows 11 Windows 11 22H2 Server 2022 Server 2019 Windows 10 Server 2016 Server 2012 R2 Server 2012 Windows 8.1 |
CVE-2022-37979 | Windows 11 22H2 Windows 11 Server 2022 Server 2019 Windows 10 Server 2016 |
CVE-2022-38040 | Windows 11 Windows 11 22H2 Server 2022 Server 2019 Windows 10 Server 2016 Server 2012 R2 Server 2012 Windows 8.1 |
CVE-2022-38041 | Windows 11 Windows 11 22H2 Server 2022 Server 2019 Windows 10 Server 2016 Server 2012 R2 Server 2012 Windows 8.1 |
CVE-2022-41038 | SharePoint Server Subscription Edition SharePoint Foundation 2013 SharePoint Server 2019 SharePoint Enterprise Server 2016 SharePoint Enterprise Server 2013 |
CVE-2022-38049 | Office LTSC 2021 365 Apps Enterprise Office 2019 |
目前,微软官方已经发布针对此漏洞的补丁程序,建议用户通过以下链接尽快安装补丁程序:
https://msrc.microsoft.com/update-guide/releaseNote/2022-Oct
https://msrc.microsoft.com/update-guide/releaseNote/2022-Oct
https://www.bleepingcomputer.com/news/microsoft/microsoft-october-2022-patch-tuesday-fixes-zero-day-used-in-attacks-84-flaws/
https://msrc-blog.microsoft.com/2022/09/29/customer-guidance-for-reported-zero-day-vulnerabilities-in-microsoft-exchange-server/