KLA12383
Multiple vulnerabilities in Microsoft System Center

Обновлено: 29/09/2023

Дата обнаружения	14/12/2021
Уровень угрозы	Critical
Описание	Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: A remote code execution vulnerability in Microsoft Defender for IoT can be exploited remotely to execute arbitrary code. An elevation of privilege vulnerability in Microsoft Defender for IOT can be exploited remotely to gain privileges. An information disclosure vulnerability in Microsoft Defender for IoT can be exploited remotely to obtain sensitive information.
Пораженные продукты	Microsoft Defender for IoT
Решение	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Первичный источник обнаружения	CVE-2021-42315 CVE-2021-41365 CVE-2021-42310 CVE-2021-43889 CVE-2021-42314 CVE-2021-42313 CVE-2021-42311 CVE-2021-43882 CVE-2021-42312 CVE-2021-43888
Оказываемое влияние ?	ACE [?] OSI [?] PE [?]
Связанные продукты	Windows Defender
CVE-IDS	CVE-2021-423156.5High CVE-2021-413656.5High CVE-2021-423107.5Critical CVE-2021-438896.5High CVE-2021-423146.5High CVE-2021-438827.5Critical CVE-2021-423124.6Warning CVE-2021-438885.0Warning

KLA12383Multiple vulnerabilities in Microsoft System Center