ID de Prueba:	1.3.6.1.4.1.25623.1.0.826517
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows Multiple Vulnerabilities (KB5017308)
Resumen:	This host is missing an important security; update according to Microsoft KB5017308
Descripción:	Summary: This host is missing an important security update according to Microsoft KB5017308 Vulnerability Insight: Multiple flaws exist due to: - An elevation of privilege vulnerability in Windows Common Log File System Driver. - A information disclosure vulnerability in SPNEGO Extended Negotiation (NEGOEX) Security Mechanism. - A elevation of privilege vulnerability in Windows Distributed File System (DFS). For more information about the vulnerabilities refer to Reference links. Vulnerability Impact: Successful exploitation will allow an attacker to elevate privileges, execute arbitrary commands, disclose information, bypass security restrictions and conduct DoS attacks. Affected Software/OS: - Microsoft Windows 10 Version 20H2 for 32-bit Systems - Microsoft Windows 10 Version 20H2 for x64-based Systems - Microsoft Windows 10 Version 21H1 for 32-bit Systems - Microsoft Windows 10 Version 21H1 for x64-based Systems - Microsoft Windows 10 Version 21H2 for 32-bit Systems - Microsoft Windows 10 Version 21H2 for x64-based Systems Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2022-26928 Windows Photo Import API Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26928 Common Vulnerability Exposure (CVE) ID: CVE-2022-30170 Windows Credential Roaming Service Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30170 Common Vulnerability Exposure (CVE) ID: CVE-2022-30196 Windows Secure Channel Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30196 Common Vulnerability Exposure (CVE) ID: CVE-2022-30200 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30200 Common Vulnerability Exposure (CVE) ID: CVE-2022-34718 Windows TCP/IP Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34718 Common Vulnerability Exposure (CVE) ID: CVE-2022-34719 Windows Distributed File System (DFS) Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34719 Common Vulnerability Exposure (CVE) ID: CVE-2022-34720 Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34720 Common Vulnerability Exposure (CVE) ID: CVE-2022-34721 Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34721 Common Vulnerability Exposure (CVE) ID: CVE-2022-34722 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34722 Common Vulnerability Exposure (CVE) ID: CVE-2022-34725 Windows ALPC Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34725 Common Vulnerability Exposure (CVE) ID: CVE-2022-34726 Microsoft ODBC Driver Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34726 Common Vulnerability Exposure (CVE) ID: CVE-2022-34727 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34727 Common Vulnerability Exposure (CVE) ID: CVE-2022-34728 Windows Graphics Component Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34728 Common Vulnerability Exposure (CVE) ID: CVE-2022-34729 Windows GDI Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34729 Common Vulnerability Exposure (CVE) ID: CVE-2022-34730 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34730 Common Vulnerability Exposure (CVE) ID: CVE-2022-34731 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34731 Common Vulnerability Exposure (CVE) ID: CVE-2022-34732 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34732 Common Vulnerability Exposure (CVE) ID: CVE-2022-34733 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34733 Common Vulnerability Exposure (CVE) ID: CVE-2022-34734 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34734 Common Vulnerability Exposure (CVE) ID: CVE-2022-35803 Windows Common Log File System Driver Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35803 Common Vulnerability Exposure (CVE) ID: CVE-2022-35831 Windows Remote Access Connection Manager Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35831 Common Vulnerability Exposure (CVE) ID: CVE-2022-35832 Windows Event Tracing Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35832 Common Vulnerability Exposure (CVE) ID: CVE-2022-35833 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35833 Common Vulnerability Exposure (CVE) ID: CVE-2022-35834 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35834 Common Vulnerability Exposure (CVE) ID: CVE-2022-35835 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35835 Common Vulnerability Exposure (CVE) ID: CVE-2022-35836 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35836 Common Vulnerability Exposure (CVE) ID: CVE-2022-35837 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35837 Common Vulnerability Exposure (CVE) ID: CVE-2022-35840 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35840 Common Vulnerability Exposure (CVE) ID: CVE-2022-35841 Windows Enterprise App Management Service Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35841 Common Vulnerability Exposure (CVE) ID: CVE-2022-37954 DirectX Graphics Kernel Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37954 Common Vulnerability Exposure (CVE) ID: CVE-2022-37955 Windows Group Policy Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37955 Common Vulnerability Exposure (CVE) ID: CVE-2022-37956 Windows Kernel Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37956 Common Vulnerability Exposure (CVE) ID: CVE-2022-37957 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37957 Common Vulnerability Exposure (CVE) ID: CVE-2022-37958 SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37958 Common Vulnerability Exposure (CVE) ID: CVE-2022-37969 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37969 Common Vulnerability Exposure (CVE) ID: CVE-2022-38004 Windows Fax Service Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38004 Common Vulnerability Exposure (CVE) ID: CVE-2022-38005 Windows Print Spooler Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38005 Common Vulnerability Exposure (CVE) ID: CVE-2022-38006 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38006
Copyright	Copyright (C) 2022 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.