KLA12072
PE vulnerabilities in Microsoft System Center

Обновлено: 18/01/2022
Дата обнаружения
09/02/2021
Уровень угрозы
High
Описание

An elevation of privilege vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to gain privileges.

Below is a complete list of vulnerabilities:

  1. An elevation of privilege vulnerability in System Center Operations Manager can be exploited remotely to gain privileges.
  2. An elevation of privilege vulnerability in Microsoft Defender can be exploited remotely to gain privileges.
Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Пораженные продукты

System Center 2019 Operations Manager
Microsoft Endpoint Protection
Microsoft System Center 2012 R2 Endpoint Protection
Microsoft Security Essentials
Microsoft System Center 2012 Endpoint Protection
Windows Defender
Microsoft System Center Endpoint Protection

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
CVE-2021-1728
CVE-2021-24092
Оказываемое влияние
?
PE 
[?]
Связанные продукты
Microsoft Windows
Microsoft System Center Operations Manager
Windows Defender
CVE-IDS
KB list

4601269