medium
high
medium
high
,
(),
- Untrusted Pointer Dereference
- Insufficient UI Warning of Dangerous Operations
- NULL Pointer Dereference
- Improper Certificate Validation
- Integer Overflow or Wraparound
- Missing Authorization
- Exposure of Sensitive Information to an Unauthorized Actor
- Missing Synchronization
- Concurrent Execution using Shared Resource with Improper Synchronization (‘Race Condition’)
- Improper Link Resolution Before File Access (‘Link Following’)
- Double Free
- Acceptance of Extraneous Untrusted Data With Trusted Data
- Use After Free
- Sensitive Data Storage in Improperly Locked Memory
- Numeric Truncation Error
- Buffer Over-read
- Time-of-check Time-of-use (TOCTOU) Race Condition
- Missing Support for Integrity Check
- Integer Underflow (Wrap or Wraparound)
- Improper Input Validation
- Out-of-bounds Read
- Uncontrolled Resource Consumption
- Relative Path Traversal
- Improper Access Control
- Missing Authentication for Critical Function
- Processor Optimization Removal or Modification of Security-critical Code
- Protection Mechanism Failure
- Heap-based Buffer Overflow
- Access of Resource Using Incompatible Type (‘Type Confusion’)
Microsoft heeft kwetsbaarheden verholpen in Windows.
Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade:
Denial-of-Service (DoS)
Manipulatie van gegevens
Omzeilen van een beveiligingsmaatregel
Uitvoeren van willekeurige code
Toegang tot gevoelige gegevens
Verkrijgen van verhoogde rechten
Spoofing
“`
Windows Cryptographic Services:
Windows Visual Basic Scripting:
Capability Access Management Service (camsvc):
Windows Update Service:
Windows Win32K – ICOMP:
AMD Store Queue:
Windows StateRepository API:
Microsoft Windows Search Component:
Microsoft Graphics Component:
Role: Windows Hyper-V:
Microsoft Input Method Editor (IME):
Windows Ancillary Function Driver for WinSock:
Microsoft Windows QoS scheduler:
Windows KDC Proxy Service (KPSSVC):
Windows Print Spooler Components:
Remote Desktop Client:
Windows Virtualization-Based Security (VBS) Enclave:
Windows Storage VSP Driver:
Windows Cred SSProvider Protocol:
Microsoft Brokering File System:
AMD L1 Data Queue:
Windows Connected Devices Platform Service:
Virtual Hard Disk (VHDX):
Storage Port Driver:
Windows User-Mode Driver Framework Host:
Windows SmartScreen:
Workspace Broker:
HID class driver:
Windows Kerberos:
Windows Imaging Component:
Windows TDX.sys:
Microsoft PC Manager:
Windows NTFS:
Windows Routing and Remote Access Service (RRAS):
Windows Kernel:
Windows Remote Desktop Licensing Service:
Windows Fast FAT Driver:
Microsoft MPEG-2 Video Extension:
Windows Win32K – GRFX:
Universal Print Management Service:
Windows Media:
Windows Netlogon:
Windows Event Tracing:
Windows SMB:
Windows SPNEGO Extended Negotiation:
Windows Performance Recorder:
Windows Secure Kernel Mode:
Windows GDI:
Windows SSDP Service:
Windows TCP/IP:
Kernel Streaming WOW Thunk Service Driver:
Windows MBT Transport driver:
Windows Universal Plug and Play (UPnP) Device Host:
Windows AppX Deployment Service:
Windows BitLocker:
Windows Shell:
Windows Notification:
“`
| Platforms | Producten | Versies |
|---|---|---|
|
Microsoft Remote Desktop client for Windows Desktop |
1.2.0.0|<1.2.6353.0 – 10.0.10240.0|<10.0.10240.21073 – 10.0.14393.0|<10.0.14393.8246 – 10.0.17763.0|<10.0.17763.7558 – 10.0.19044.0|<10.0.19044.6093 – 10.0.19045.0|<10.0.19045.6093 – 10.0.22631.0|<10.0.22631.5624 – 10.0.26100.0|<10.0.26100.4652 – 10.0.22621.0|<10.0.22621.5624 – 10.0.22631.0|<10.0.22631.5624 – 1.00|<2.0.559.0 – 6.0.6003.0|<6.0.6003.23418 – 6.1.7601.0|<6.1.7601.27820 – 6.1.7601.0|<6.1.7601.27820 – 6.0.6003.0|<6.0.6003.23418 – 6.0.6003.0|<6.0.6003.23418 – 6.2.9200.0|<6.2.9200.25522 – 6.2.9200.0|<6.2.9200.25573 – 6.2.9200.0|<6.2.9200.25522 – 6.2.9200.0|<6.2.9200.25573 – 6.3.9600.0|<6.3.9600.22620 – 6.3.9600.0|<6.3.9600.22676 – 6.3.9600.0|<6.3.9600.22620 – 6.3.9600.0|<6.3.9600.22676 – 10.0.14393.0|<10.0.14393.8148 – 10.0.14393.0|<10.0.14393.8246 – 10.0.14393.0|<10.0.14393.8148 – 10.0.14393.0|<10.0.14393.8246 – 10.0.17763.0|<10.0.10240.21034 – 10.0.17763.0|<10.0.17763.7558 – 10.0.17763.0|<10.0.10240.21034 – 10.0.17763.0|<10.0.17763.7558 – 10.0.20348.0|<10.0.20348.3807 – 10.0.20348.0|<10.0.20348.3932 – 10.0.25398.0|<10.0.22621.5472 – 10.0.25398.0|<10.0.25398.1732 – 10.0.26100.0|<10.0.26100.4652 – 10.0.26100.0|<10.0.26200.4349 – 10.0.26100.0|<10.0.26100.4652 – 10.0.26100.0|<10.0.26200.4349 |
Microsoft heeft updates beschikbaar gesteld waarmee de beschreven kwetsbaarheden worden verholpen. We raden u aan om deze updates te installeren. Meer informatie over de kwetsbaarheden, de installatie van de updates en eventuele work-arounds []
, , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,
medium
high
medium
high
,
(),