Дата обнаружения
|
11/01/2022 |
Уровень угрозы
|
Critical |
Описание
|
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, bypass security restrictions, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities:
|
Эксплуатация
|
The following public exploits exists for this vulnerability: https://github.com/bakedmuffinman/BlackLotusDetection https://github.com/Wack0/batondrop_armv7 https://github.com/qjawls2003/BlackLotus-Detection https://github.com/EzoomE/CVE-2022-21907-RCE https://github.com/lolin19/CVE-2022-21839- https://github.com/dishfwk/CVE-2022-21882 https://github.com/Al1ex/WindowsElevation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. |
Пораженные продукты
|
Windows Server, version 20H2 (Server Core Installation) |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2022-21860 CVE-2022-21959 CVE-2022-21852 CVE-2022-21859 CVE-2022-21915 CVE-2022-21875 CVE-2022-21908 CVE-2021-36976 CVE-2022-21834 CVE-2022-21864 CVE-2022-21910 CVE-2022-21898 CVE-2022-21922 CVE-2022-21881 CVE-2022-21838 CVE-2022-21867 CVE-2022-21901 CVE-2022-21865 CVE-2022-21850 CVE-2022-21870 CVE-2022-21912 CVE-2022-21913 CVE-2022-21894 CVE-2022-21960 CVE-2022-21879 CVE-2022-21835 CVE-2022-21903 CVE-2022-21964 CVE-2022-21907 CVE-2022-21889 CVE-2022-21866 CVE-2021-22947 CVE-2022-21919 CVE-2022-21851 CVE-2022-21920 CVE-2022-21888 CVE-2022-21868 CVE-2022-21963 CVE-2022-21958 CVE-2022-21928 CVE-2022-21924 CVE-2022-21905 CVE-2022-21836 CVE-2022-21839 CVE-2022-21918 CVE-2022-21900 CVE-2022-21880 CVE-2022-21883 CVE-2022-21882 CVE-2022-21902 CVE-2022-21833 CVE-2022-21877 CVE-2022-21871 CVE-2022-21874 CVE-2022-21890 CVE-2022-21917 CVE-2022-21893 CVE-2022-21904 CVE-2022-21876 CVE-2022-21848 CVE-2022-21847 CVE-2022-21896 CVE-2022-21961 CVE-2022-21887 CVE-2022-21884 CVE-2022-21897 CVE-2022-21857 CVE-2022-21862 CVE-2022-21878 CVE-2022-21858 CVE-2022-21849 CVE-2022-21921 CVE-2022-21906 CVE-2022-21873 CVE-2022-21899 CVE-2022-21885 CVE-2022-21895 CVE-2022-21914 CVE-2022-21861 CVE-2022-21872 CVE-2022-21892 CVE-2022-21869 CVE-2022-21843 CVE-2022-21863 CVE-2022-21916 CVE-2022-21962 |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
DoS
[?]
SB
[?]
PE
[?]
SUI
[?]
|
Связанные продукты
|
Microsoft Windows Microsoft Windows Server Microsoft Windows Server 2012 Microsoft Windows 8 Microsoft Windows 7 Microsoft Windows Server 2008 Windows RT Microsoft Windows 10 Microsoft Windows Server 2016 Microsoft Windows Server 2019 |
CVE-IDS
|
CVE-2022-218604.4Warning
CVE-2022-219597.2High CVE-2022-218527.2High CVE-2022-218596.9High CVE-2022-219154.0Warning CVE-2022-218757.2High CVE-2022-219087.2High CVE-2021-369764.3Warning CVE-2022-218347.2High CVE-2022-218644.4Warning CVE-2022-219104.6Warning CVE-2022-219229.0Critical CVE-2022-218817.2High CVE-2022-218387.2High CVE-2022-218676.9High CVE-2022-219017.7Critical CVE-2022-218654.4Warning CVE-2022-218509.3Critical CVE-2022-218707.2High CVE-2022-219127.2High CVE-2022-219135.0Critical CVE-2022-218944.9Warning CVE-2022-219607.2High CVE-2022-218797.2High CVE-2022-218357.2High CVE-2022-219037.2High CVE-2022-219644.9Warning CVE-2022-218894.3Warning CVE-2022-218664.4Warning CVE-2021-229474.3Warning CVE-2022-219196.9High CVE-2022-218519.3Critical CVE-2022-219209.0Critical CVE-2022-218889.3Critical CVE-2022-218686.9High CVE-2022-219637.2High CVE-2022-219587.2High CVE-2022-219286.9High CVE-2022-219245.4High CVE-2022-219054.9Warning CVE-2022-218367.2High CVE-2022-218392.1Warning CVE-2022-219184.9Warning CVE-2022-219003.8Warning CVE-2022-218807.8Critical CVE-2022-218837.1High CVE-2022-218827.2High CVE-2022-219027.2High CVE-2022-218337.2High CVE-2022-218774.9Warning CVE-2022-218717.2High CVE-2022-218904.3Warning CVE-2022-219179.3Critical CVE-2022-218938.5Critical CVE-2022-219045.0Critical CVE-2022-218764.9Warning CVE-2022-218487.1High CVE-2022-218474.9Warning CVE-2022-218966.9High CVE-2022-219617.2High CVE-2022-218877.2High CVE-2022-218847.2High CVE-2022-218977.2High CVE-2022-218579.0Critical CVE-2022-218626.9High CVE-2022-218789.3Critical CVE-2022-218587.2High CVE-2022-218499.3Critical CVE-2022-219214.9Warning CVE-2022-219062.1Warning CVE-2022-218737.2High CVE-2022-218994.9Warning CVE-2022-218857.2High CVE-2022-218957.2High CVE-2022-219147.2High CVE-2022-218617.2High CVE-2022-218727.2High CVE-2022-218927.2High CVE-2022-218697.2High CVE-2022-218434.3Warning CVE-2022-218636.9High CVE-2022-219167.2High CVE-2022-219627.2High |
KB list
|
5009585 |