描述:
Microsoft 发布了安全性更新,以应对影响数个 Microsoft 产品或元件的多个漏洞。有关安全性更新的列表,请参考以下网址:
https://msrc.microsoft.com/update-guide/releaseNote/2022-Sep
有报告指一个 Microsoft Windows 及 Server 中的权限提升漏洞 (CVE-2022-37969) 正受到攻击,而另一个 Microsoft Windows 11 中的泄漏资讯漏洞 (CVE-2022-23960) 技术详情已被公开。此外,多个远端执行程式码漏洞 (CVE-2022-34700、CVE-2022-34718、CVE-2022-34721、CVE-2022-34722 及 CVE-2022-35805) 亦处於被攻击的高风险。系统管理员应立即为受影响的系统安装修补程式,以减低受到网络攻击的风险。
受影响的系统:
- Microsoft Windows 7, 8.1, RT 8.1, 10, 11
- Microsoft Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016, 2019, 2022, 2022 Azure Edition Core Hotpatch
- Microsoft Office 2013, 2013 RT, 2016, 2019, LTSC 2021
- Microsoft 365 Apps for Enterprise
- Microsoft SharePoint Foundation 2013
- Microsoft SharePoint Enterprise Server 2013, 2016
- Microsoft SharePoint Server 2019, Subscription Edition
- Microsoft Visio 2013, 2016
- Microsoft Visual Studio 2019, 2022
- Visual Studio 2022 for Mac version 17.3
- Visual Studio Code
- Microsoft .NET Framework 2.0, 3.0, 3.5, 3.5.1, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1
- .NET 6.0
- .NET Core 3.1
- Microsoft Defender for Endpoint for Mac
- Microsoft Dynamics CRM (on-premises) 9.0, 9.1
- AV1 Video Extension
- Azure ARC, Guest Configuration
- Raw Image Extension
影响:
成功利用这些漏洞可以导致远端执行程式码、服务被拒绝、权限提升、泄漏资讯、绕过保安功能,视乎攻击者利用哪个漏洞而定。
建议:
受影响产品的修补程式可在 Windows Update 或 Microsoft Update Catalog 获取。受影响系统的用户应遵从产品供应商的建议,立即采取行动以降低风险。
进一步信息:
- https://msrc.microsoft.com/update-guide/releaseNote/2022-Sep
- https://www.hkcert.org/tc/security-bulletin/microsoft-monthly-security-update-september-2022
- https://www.cisa.gov/uscert/ncas/current-activity/2022/09/13/microsoft-releases-september-2022-ecurity-updates
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26928 (to CVE-2022-26929)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30170
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30196
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30200
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33647
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33679
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34700
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34718 (to CVE-2022-34734)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35803
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35805
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35823
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35828
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35830 (to CVE-2022-35838)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35840 (to CVE-2022-35841)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37954 (to CVE-2022-37959)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37961 (to CVE-2022-37964)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37969
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38004 (to CVE-2022-38011)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38013
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38019 (to CVE-2022-38020)