KLA12383
Multiple vulnerabilities in Microsoft System Center

Обновлено: 16/12/2021
Дата обнаружения
14/12/2021
Уровень угрозы
Critical
Описание

Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. A remote code execution vulnerability in Microsoft Defender for IoT can be exploited remotely to execute arbitrary code.
  2. An elevation of privilege vulnerability in Microsoft Defender for IOT can be exploited remotely to gain privileges.
  3. An information disclosure vulnerability in Microsoft Defender for IoT can be exploited remotely to obtain sensitive information.
Пораженные продукты

Microsoft Defender for IoT

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
CVE-2021-42315
CVE-2021-41365
CVE-2021-42310
CVE-2021-43889
CVE-2021-42314
CVE-2021-42313
CVE-2021-42311
CVE-2021-43882
CVE-2021-42312
CVE-2021-43888
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]

PE 
[?]
Связанные продукты
Windows Defender
Узнай статистику распространения уязвимостей в твоем регионе