ID de Prueba:	1.3.6.1.4.1.25623.1.0.832772
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows Multiple Vulnerabilities (KB5034122)
Resumen:	This host is missing an important security; update according to Microsoft KB5034122
Descripción:	Summary: This host is missing an important security update according to Microsoft KB5034122 Vulnerability Insight: Multiple flaws exist due to, - Windows Themes Spoofing Vulnerability. - Remote Desktop Client Remote Code Execution Vulnerability. - Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability. For more information about the vulnerabilities refer to Reference links. Vulnerability Impact: Successful exploitation will allow an attacker to elevate privileges, execute arbitrary commands, disclose information, bypass security restrictions, spoofing and conduct Denial of service attacks on an affected system. Affected Software/OS: - Microsoft Windows 10 Version 22H2 for 32-bit Systems - Microsoft Windows 10 Version 22H2 for x64-based Systems - Microsoft Windows 10 Version 21H2 for x64-based Systems - Microsoft Windows 10 Version 21H2 for 32-bit Systems Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2024-21320 Windows Themes Spoofing Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21320 Common Vulnerability Exposure (CVE) ID: CVE-2024-21307 Remote Desktop Client Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21307 Common Vulnerability Exposure (CVE) ID: CVE-2024-21306 Microsoft Bluetooth Driver Spoofing Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21306 Common Vulnerability Exposure (CVE) ID: CVE-2024-21305 Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21305 Common Vulnerability Exposure (CVE) ID: CVE-2022-35737 https://security.gentoo.org/glsa/202210-40 https://blog.trailofbits.com/2022/10/25/sqlite-vulnerability-july-2022-library-api/ https://kb.cert.org/vuls/id/720344 https://www.sqlite.org/cves.html Common Vulnerability Exposure (CVE) ID: CVE-2024-20692 Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20692 Common Vulnerability Exposure (CVE) ID: CVE-2024-20687 Microsoft AllJoyn API Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20687 Common Vulnerability Exposure (CVE) ID: CVE-2024-20683 Win32k Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20683 Common Vulnerability Exposure (CVE) ID: CVE-2024-21316 Windows Server Key Distribution Service Security Feature Bypass https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21316 Common Vulnerability Exposure (CVE) ID: CVE-2024-20660 Microsoft Message Queuing Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20660 Common Vulnerability Exposure (CVE) ID: CVE-2024-20658 Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20658 Common Vulnerability Exposure (CVE) ID: CVE-2024-20653 Microsoft Common Log File System Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20653 Common Vulnerability Exposure (CVE) ID: CVE-2024-20652 Windows HTML Platforms Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20652 Common Vulnerability Exposure (CVE) ID: CVE-2024-20674 Windows Kerberos Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20674 Common Vulnerability Exposure (CVE) ID: CVE-2024-20666 BitLocker Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20666 Common Vulnerability Exposure (CVE) ID: CVE-2024-21314 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21314 Common Vulnerability Exposure (CVE) ID: CVE-2024-21313 Windows TCP/IP Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21313 Common Vulnerability Exposure (CVE) ID: CVE-2024-21311 Windows Cryptographic Services Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21311 Common Vulnerability Exposure (CVE) ID: CVE-2024-21310 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21310 Common Vulnerability Exposure (CVE) ID: CVE-2024-20700 Windows Hyper-V Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20700 Common Vulnerability Exposure (CVE) ID: CVE-2024-20699 Windows Hyper-V Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20699 Common Vulnerability Exposure (CVE) ID: CVE-2024-20698 Windows Kernel Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20698 Common Vulnerability Exposure (CVE) ID: CVE-2024-20696 https://clearbluejar.github.io/posts/patch-tuesday-diffing-cve-2024-20696-windows-libarchive-rce/ https://github.com/clearbluejar/CVE-2024-20696 Windows Libarchive Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20696 Common Vulnerability Exposure (CVE) ID: CVE-2024-20694 Windows CoreMessaging Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20694 Common Vulnerability Exposure (CVE) ID: CVE-2024-20691 Windows Themes Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20691 Common Vulnerability Exposure (CVE) ID: CVE-2024-20690 Windows Nearby Sharing Spoofing Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20690 Common Vulnerability Exposure (CVE) ID: CVE-2024-20682 Windows Cryptographic Services Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20682 Common Vulnerability Exposure (CVE) ID: CVE-2024-20681 Windows Subsystem for Linux Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20681 Common Vulnerability Exposure (CVE) ID: CVE-2024-20680 Windows Message Queuing Client (MSMQC) Information Disclosure https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20680 Common Vulnerability Exposure (CVE) ID: CVE-2024-20664 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20664 Common Vulnerability Exposure (CVE) ID: CVE-2024-20663 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20663 Common Vulnerability Exposure (CVE) ID: CVE-2024-20661 Microsoft Message Queuing Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20661 Common Vulnerability Exposure (CVE) ID: CVE-2024-20657 Windows Group Policy Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20657 Common Vulnerability Exposure (CVE) ID: CVE-2024-20654 Microsoft ODBC Driver Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20654
Copyright	Copyright (C) 2024 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.