ID de Prueba:	1.3.6.1.4.1.25623.1.0.832062
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows Multiple Vulnerabilities (KB5026361)
Resumen:	This host is missing an important security; update according to Microsoft KB5026361
Descripción:	Summary: This host is missing an important security update according to Microsoft KB5026361 Vulnerability Insight: Multiple flaws exist due to: - A Remote Code Execution Vulnerability in Windows OLE. - An Elevation of Privilege Vulnerability in Windows Bluetooth Driver. - An Information Disclosure Vulnerability in Windows iSCSI Target Service. For more information about the vulnerabilities refer to Reference links. Vulnerability Impact: Successful exploitation will allow an attacker to elevate privileges, execute arbitrary commands, bypass security feature, disclose information and conduct DoS attacks on an affected system. Affected Software/OS: - Microsoft Windows 10 Version 20H2 for x64-based Systems - Microsoft Windows 10 Version 20H2 for 32-bit Systems - Microsoft Windows 10 Version 21H2 for 32-bit Systems - Microsoft Windows 10 Version 21H2 for x64-based Systems - Microsoft Windows 10 Version 22H2 for x64-based Systems - Microsoft Windows 10 Version 22H2 for 32-bit Systems Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2023-24949 Windows Kernel Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24949 Common Vulnerability Exposure (CVE) ID: CVE-2023-24947 Windows Bluetooth Driver Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24947 Common Vulnerability Exposure (CVE) ID: CVE-2023-24903 Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24903 Common Vulnerability Exposure (CVE) ID: CVE-2023-29325 Windows OLE Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29325 Common Vulnerability Exposure (CVE) ID: CVE-2023-29324 Windows MSHTML Platform Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29324 Common Vulnerability Exposure (CVE) ID: CVE-2023-24948 Windows Bluetooth Driver Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24948 Common Vulnerability Exposure (CVE) ID: CVE-2023-24946 Windows Backup Service Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24946 Common Vulnerability Exposure (CVE) ID: CVE-2023-24945 Windows iSCSI Target Service Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24945 Common Vulnerability Exposure (CVE) ID: CVE-2023-24944 Windows Bluetooth Driver Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24944 Common Vulnerability Exposure (CVE) ID: CVE-2023-24905 Remote Desktop Client Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24905 Common Vulnerability Exposure (CVE) ID: CVE-2023-24943 Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24943 Common Vulnerability Exposure (CVE) ID: CVE-2023-24942 Remote Procedure Call Runtime Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24942 Common Vulnerability Exposure (CVE) ID: CVE-2023-24901 Windows NFS Portmapper Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24901 Common Vulnerability Exposure (CVE) ID: CVE-2023-24940 Windows Pragmatic General Multicast (PGM) Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24940 Common Vulnerability Exposure (CVE) ID: CVE-2023-24900 Windows NTLM Security Support Provider Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24900 Common Vulnerability Exposure (CVE) ID: CVE-2023-24939 Server for NFS Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24939 Common Vulnerability Exposure (CVE) ID: CVE-2023-28283 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28283 Common Vulnerability Exposure (CVE) ID: CVE-2023-28251 Windows Driver Revocation List Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28251 Common Vulnerability Exposure (CVE) ID: CVE-2023-24932 Secure Boot Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24932
Copyright	Copyright (C) 2023 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.