KLA12199
Multiple vulnerabilities in Microsoft Apps

Обновлено: 22/06/2021

Дата обнаружения	08/06/2021
Уровень угрозы	High
Описание	Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: A remote code execution vulnerability in Paint 3D can be exploited remotely to execute arbitrary code. A remote code execution vulnerability in 3D Viewer can be exploited remotely to execute arbitrary code. An information disclosure vulnerability in 3D Viewer can be exploited remotely to obtain sensitive information. A remote code execution vulnerability in Microsoft Intune Management Extension can be exploited remotely to execute arbitrary code.
Пораженные продукты	3D Viewer Paint 3D Intune management extension
Решение	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Первичный источник обнаружения	CVE-2021-31983 CVE-2021-31943 CVE-2021-31945 CVE-2021-31944 CVE-2021-31942 CVE-2021-31946 CVE-2021-31980
Оказываемое влияние ?	ACE [?] OSI [?]
Связанные продукты	Microsoft Internet Information Services
CVE-IDS	CVE-2021-319836.8High CVE-2021-319436.8High CVE-2021-319456.8High CVE-2021-319444.3Warning CVE-2021-319426.8High CVE-2021-319466.8High CVE-2021-319807.5Critical

KLA12199Multiple vulnerabilities in Microsoft Apps