Multiple vulnerabilities in Microsoft Apps

Описание

Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Paint 3D can be exploited remotely to execute arbitrary code.
2. A remote code execution vulnerability in 3D Viewer can be exploited remotely to execute arbitrary code.
3. An information disclosure vulnerability in 3D Viewer can be exploited remotely to obtain sensitive information.
4. A remote code execution vulnerability in Microsoft Intune Management Extension can be exploited remotely to execute arbitrary code.

Первичный источник обнаружения

• CVE-2021-31983
  CVE-2021-31943
  CVE-2021-31945
  CVE-2021-31944
  CVE-2021-31942
  CVE-2021-31946
  CVE-2021-31980
  

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

• Microsoft-Internet-Information-Services

Список CVE

• CVE-2021-31983
  critical
• CVE-2021-31943
  critical
• CVE-2021-31945
  critical
• CVE-2021-31944
  high
• CVE-2021-31942
  critical
• CVE-2021-31946
  critical
• CVE-2021-31980
  critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com