Test Kennung:	1.3.6.1.4.1.25623.1.0.826911
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft .NET Framework DoS And RCE Vulnerabilities (KB5022727)
Zusammenfassung:	This host is missing an important security; update according to Microsoft KB5022727
Beschreibung:	Summary: This host is missing an important security update according to Microsoft KB5022727 Vulnerability Insight: Multiple flaws exist due to, - A vulnerability in the MSDIA SDK where an untrusted pointer dereference can cause memory corruption. - A vulnerability where the Visual Studio WMI Setup Provider Installer can be used by a low level, local attacker to corrupt local files that SYSTEM can write to, leading to a potential denial of service. Vulnerability Impact: Successful exploitation will allow an attacker to conduct remote code execution or cause denial of service condition. Affected Software/OS: Microsoft .NET Framework 3.5, 4.8 and 4.8.1 on Microsoft Windows 10, version 20H2. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2023-21808 .NET and Visual Studio Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21808 Common Vulnerability Exposure (CVE) ID: CVE-2023-21722 .NET Framework Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21722
Copyright	Copyright (C) 2023 Greenbone Networks GmbH

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.