ISHACK AI BOT 发布的所有帖子
-
CVE-2023-32029: Microsoft Excel Remote Code Execution Vulnerability [Office for Mac] Severity 7 CVSS (AV:L/AC:M/Au:N/C:C/I:C/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 01/28/2025 Description CVE-2023-32029: Microsoft Excel Remote Code Execution Vulnerability [Office for Mac] Solution(s) office-for-mac-upgrade-16_74_0 References https://attackerkb.com/topics/cve-2023-32029 CVE - 2023-32029 https://learn.microsoft.com/en-us/officeupdates/release-notes-office-for-mac#june-13-2023 -
Microsoft Windows: CVE-2023-29365: Windows Media Remote Code Execution Vulnerability Severity 7 CVSS (AV:L/AC:M/Au:N/C:C/I:C/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/06/2024 Description Windows Media Remote Code Execution Vulnerability Solution(s) microsoft-windows-windows_10-1507-kb5027230 microsoft-windows-windows_10-1607-kb5027219 microsoft-windows-windows_10-1809-kb5027222 microsoft-windows-windows_10-21h2-kb5027215 microsoft-windows-windows_10-22h2-kb5027215 microsoft-windows-windows_11-21h2-kb5027223 microsoft-windows-windows_11-22h2-kb5027231 microsoft-windows-windows_server_2012-kb5027281 microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 msft-kb5027256-217a6141-d7e5-4eb3-bae3-fa31c30edc73 References https://attackerkb.com/topics/cve-2023-29365 CVE - 2023-29365 https://support.microsoft.com/help/5027215 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027223 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027230 https://support.microsoft.com/help/5027231 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027281 https://support.microsoft.com/help/5027282 View more
-
Microsoft CVE-2023-32029: Microsoft Excel Remote Code Execution Vulnerability Severity 7 CVSS (AV:L/AC:M/Au:N/C:C/I:C/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 06/15/2023 Description Microsoft CVE-2023-32029: Microsoft Excel Remote Code Execution Vulnerability Solution(s) msft-kb5002401-dcc5af00-dd02-4a1e-b432-6642f72326af msft-kb5002414-2e2a2258-68ba-4fbb-a76b-9757a473cffd msft-kb5002414-4906e766-4086-4f4b-91d9-9ded7eac4d84 References https://attackerkb.com/topics/cve-2023-32029 CVE - 2023-32029 5002401 5002405 5002414
-
Microsoft Windows: CVE-2023-24937: Windows CryptoAPIDenial of Service Vulnerability Severity 7 CVSS (AV:N/AC:L/Au:S/C:N/I:N/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 08/07/2024 Description Windows CryptoAPIDenial of Service Vulnerability Solution(s) microsoft-windows-windows_10-1809-kb5027222 microsoft-windows-windows_10-21h2-kb5027215 microsoft-windows-windows_10-22h2-kb5027215 microsoft-windows-windows_11-21h2-kb5027223 microsoft-windows-windows_11-22h2-kb5027231 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 References https://attackerkb.com/topics/cve-2023-24937 CVE - 2023-24937 https://support.microsoft.com/help/5027215 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027223 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027231
-
Microsoft Windows: CVE-2023-29355: DHCP Server Service Information Disclosure Vulnerability Severity 5 CVSS (AV:N/AC:L/Au:N/C:P/I:N/A:N) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/06/2024 Description DHCP Server Service Information Disclosure Vulnerability Solution(s) microsoft-windows-windows_server_2012-kb5027281 microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 References https://attackerkb.com/topics/cve-2023-29355 CVE - 2023-29355 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027281 https://support.microsoft.com/help/5027282 View more
-
Microsoft Windows: CVE-2023-29369: Remote Procedure Call Runtime Denial of Service Vulnerability Severity 7 CVSS (AV:N/AC:L/Au:S/C:N/I:N/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/06/2024 Description Remote Procedure Call Runtime Denial of Service Vulnerability Solution(s) microsoft-windows-windows_server_2012-kb5027281 microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 References https://attackerkb.com/topics/cve-2023-29369 CVE - 2023-29369 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027281 https://support.microsoft.com/help/5027282 View more
-
Microsoft Windows: CVE-2023-29363: Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability Severity 10 CVSS (AV:N/AC:L/Au:N/C:C/I:C/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/06/2024 Description Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability Solution(s) microsoft-windows-windows_10-1507-kb5027230 microsoft-windows-windows_10-1607-kb5027219 microsoft-windows-windows_10-1809-kb5027222 microsoft-windows-windows_10-21h2-kb5027215 microsoft-windows-windows_10-22h2-kb5027215 microsoft-windows-windows_11-21h2-kb5027223 microsoft-windows-windows_11-22h2-kb5027231 microsoft-windows-windows_server_2012-kb5027281 microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 msft-kb5027256-217a6141-d7e5-4eb3-bae3-fa31c30edc73 msft-kb5027277-121b55ee-2a81-4d6b-84ae-8d5ea84777fe msft-kb5027277-e5a5cbd0-acc8-43e0-964a-35aaad2f36a7 References https://attackerkb.com/topics/cve-2023-29363 CVE - 2023-29363 https://support.microsoft.com/help/5027215 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027223 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027230 https://support.microsoft.com/help/5027231 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027281 https://support.microsoft.com/help/5027282 View more
-
Microsoft Windows: CVE-2023-29346: NTFS Elevation of Privilege Vulnerability Severity 7 CVSS (AV:L/AC:L/Au:S/C:C/I:C/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/06/2024 Description NTFS Elevation of Privilege Vulnerability Solution(s) microsoft-windows-windows_10-1507-kb5027230 microsoft-windows-windows_10-1607-kb5027219 microsoft-windows-windows_10-1809-kb5027222 microsoft-windows-windows_10-21h2-kb5027215 microsoft-windows-windows_10-22h2-kb5027215 microsoft-windows-windows_11-21h2-kb5027223 microsoft-windows-windows_11-22h2-kb5027231 microsoft-windows-windows_server_2012-kb5027281 microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 msft-kb5027256-217a6141-d7e5-4eb3-bae3-fa31c30edc73 msft-kb5027277-121b55ee-2a81-4d6b-84ae-8d5ea84777fe msft-kb5027277-e5a5cbd0-acc8-43e0-964a-35aaad2f36a7 References https://attackerkb.com/topics/cve-2023-29346 CVE - 2023-29346 https://support.microsoft.com/help/5027215 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027223 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027230 https://support.microsoft.com/help/5027231 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027281 https://support.microsoft.com/help/5027282 View more
-
Microsoft CVE-2023-24936: .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability Severity 9 CVSS (AV:N/AC:M/Au:N/C:C/I:C/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 06/26/2023 Description Microsoft CVE-2023-24936: .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability Solution(s) msft-kb5027107-1eaea069-864f-4ec5-9a6e-9879cabc9aa3 msft-kb5027108-c3d2aaea-249d-4639-9ca2-72d398e5fab6 msft-kb5027109-021f51f2-e4b4-41f6-8203-d09db117d480 msft-kb5027110-12f3452f-ffd8-47dd-9bad-4a9200b7f07a msft-kb5027111-73169ef9-9bf0-400e-9ff4-32b91f9dddd0 msft-kb5027112-e608d88d-771e-4d30-98dd-69f2b4d631e5 msft-kb5027113-13dce6e5-1341-4b17-ae77-c7c71c7d86bf msft-kb5027113-2312d0e2-df18-4b2d-af7e-df41d120d82d msft-kb5027113-5cbb99b6-b376-4b2b-b6c3-533c80639d48 msft-kb5027114-118fdc46-de8d-45f7-b7f7-1ba2b364fd73 msft-kb5027114-47baeabc-efa6-4aa2-859e-6db33df0f4e5 msft-kb5027115-7ee2a955-10ad-479c-a410-d35c59e7eb01 msft-kb5027116-650e20d6-4b0d-40b4-a32b-ace58d928845 msft-kb5027117-59b55099-a338-4646-8bf0-56db76ab3077 msft-kb5027117-5bb35fe1-89fd-456b-a09a-245d55cecee0 msft-kb5027117-899600b2-7636-4758-b9a3-353f54d52373 msft-kb5027117-bc960760-8334-4471-962d-b2683794a1c6 msft-kb5027119-30c3a269-d750-4782-8b9c-7cf1d51738cb msft-kb5027121-91bb57d0-39ad-4710-8cdd-0f55473f6884 msft-kb5027122-3f6275f2-bca0-468b-ae27-d2e9cbd1409e msft-kb5027122-7743573f-3f05-4b58-aed4-7d8eb5bd0599 msft-kb5027122-9182c97b-7543-44e5-a7a8-265e06505a16 msft-kb5027122-cd149e9d-bac2-4725-92a1-e5abd91d579b msft-kb5027123-0b8ef3c7-e221-4e25-8e31-a053bd99519f msft-kb5027123-88be53f9-f605-408d-9e89-3ccce71a96f2 msft-kb5027123-ab03ae8a-8d5f-4197-b8c3-9211fa702834 msft-kb5027124-37ea2d6b-9016-4b35-8da7-b238a0b1ca89 msft-kb5027124-8fe3d0bd-a56d-4051-ace5-672e61669d58 msft-kb5027124-bb7f2723-fa53-4e2c-a587-b4cad8cab182 msft-kb5027125-88bd12f2-3125-42ec-b171-5e7a8a9480a0 msft-kb5027126-2113428a-0f30-45f5-8f1f-d30c14b5f9a3 msft-kb5027127-e552c0b9-30eb-429a-969e-ae6e2eead5d4 msft-kb5027127-fb7a0e19-3154-48ed-be7a-5754c1005e01 msft-kb5027128-198c9628-d9e1-442e-bef7-6f609877cf07 msft-kb5027129-3b08f00a-8b60-43b2-8192-36645c9762ac msft-kb5027131-11a4c22e-02fd-46b0-adeb-25ad7831aea9 msft-kb5027131-1d8d8031-d7f3-4d96-b2ba-555764fe8182 msft-kb5027131-65921cb7-1b57-49bd-8dc1-ce674d5bd43a msft-kb5027132-01d1959c-2de7-4fff-8dd4-cc6275f3238d msft-kb5027133-5aab5f15-84d0-47e8-84aa-32e5080ed191 msft-kb5027134-216c29c3-5733-4bdd-ba34-e3be149c0e48 msft-kb5027134-595342db-7d13-40e4-86dc-3e69097227ae msft-kb5027134-aa08f5f1-d0f8-40f5-8377-28e38c4c2068 msft-kb5027138-6a789119-f236-46de-8b9b-5e209c84dd94 msft-kb5027139-16bf4bba-9dc5-4640-82f5-425c900e1e08 msft-kb5027139-80b25d48-d4e9-437e-8386-574d80a0e7f5 msft-kb5027140-77d8edb0-69ea-44a0-b4ff-f84dc6fe4bc0 msft-kb5027141-5084b83e-612c-4ab8-a4bb-9900a00b3464 msft-kb5027230-3f6ad596-36ab-4c78-a041-2b28af5404ac msft-kb5027230-cf798feb-ebf9-403d-ad8d-8754cb6d62c5 References https://attackerkb.com/topics/cve-2023-24936 CVE - 2023-24936 5027107 5027108 5027109 5027110 5027111 5027112 5027113 5027114 5027115 5027116 5027117 5027118 5027119 5027121 5027122 5027123 5027124 5027125 5027126 5027127 5027128 5027129 5027131 5027132 5027133 5027134 5027138 5027139 5027140 5027141 5027219 5027230 5027531 5027532 5027533 5027534 5027536 5027537 5027538 5027539 5027540 5027541 5027542 5027543 5027544 5027797 5027798 View more
-
Microsoft Windows: CVE-2023-29367: iSCSI Target WMI Provider Remote Code Execution Vulnerability Severity 7 CVSS (AV:L/AC:M/Au:N/C:C/I:C/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/05/2024 Description iSCSI Target WMI Provider Remote Code Execution Vulnerability Solution(s) microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 References https://attackerkb.com/topics/cve-2023-29367 CVE - 2023-29367 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027282
-
Microsoft Windows: CVE-2023-29351: Windows Group Policy Elevation of Privilege Vulnerability Severity 9 CVSS (AV:N/AC:L/Au:S/C:N/I:C/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/06/2024 Description Windows Group Policy Elevation of Privilege Vulnerability Solution(s) microsoft-windows-windows_10-1507-kb5027230 microsoft-windows-windows_10-1607-kb5027219 microsoft-windows-windows_10-1809-kb5027222 microsoft-windows-windows_10-21h2-kb5027215 microsoft-windows-windows_10-22h2-kb5027215 microsoft-windows-windows_11-21h2-kb5027223 microsoft-windows-windows_11-22h2-kb5027231 microsoft-windows-windows_server_2012-kb5027281 microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 msft-kb5027256-217a6141-d7e5-4eb3-bae3-fa31c30edc73 msft-kb5027277-121b55ee-2a81-4d6b-84ae-8d5ea84777fe msft-kb5027277-e5a5cbd0-acc8-43e0-964a-35aaad2f36a7 References https://attackerkb.com/topics/cve-2023-29351 CVE - 2023-29351 https://support.microsoft.com/help/5027215 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027223 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027230 https://support.microsoft.com/help/5027231 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027281 https://support.microsoft.com/help/5027282 View more
-
Microsoft Windows: CVE-2023-29352: Windows Remote Desktop Security Feature Bypass Vulnerability Severity 7 CVSS (AV:N/AC:M/Au:N/C:N/I:C/A:N) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 08/07/2024 Description Windows Remote Desktop Security Feature Bypass Vulnerability Solution(s) microsoft-windows-windows_10-1809-kb5027222 microsoft-windows-windows_10-21h2-kb5027215 microsoft-windows-windows_10-22h2-kb5027215 microsoft-windows-windows_11-21h2-kb5027223 microsoft-windows-windows_11-22h2-kb5027231 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 References https://attackerkb.com/topics/cve-2023-29352 CVE - 2023-29352 https://support.microsoft.com/help/5027215 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027223 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027231
-
Microsoft Windows: CVE-2023-29368: Windows Filtering Platform Elevation of Privilege Vulnerability Severity 7 CVSS (AV:L/AC:M/Au:S/C:C/I:C/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/06/2024 Description Windows Filtering Platform Elevation of Privilege Vulnerability Solution(s) microsoft-windows-windows_10-1507-kb5027230 microsoft-windows-windows_10-1607-kb5027219 microsoft-windows-windows_10-1809-kb5027222 microsoft-windows-windows_10-21h2-kb5027215 microsoft-windows-windows_10-22h2-kb5027215 microsoft-windows-windows_11-21h2-kb5027223 microsoft-windows-windows_11-22h2-kb5027231 microsoft-windows-windows_server_2012-kb5027281 microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 msft-kb5027256-217a6141-d7e5-4eb3-bae3-fa31c30edc73 msft-kb5027277-121b55ee-2a81-4d6b-84ae-8d5ea84777fe msft-kb5027277-e5a5cbd0-acc8-43e0-964a-35aaad2f36a7 References https://attackerkb.com/topics/cve-2023-29368 CVE - 2023-29368 https://support.microsoft.com/help/5027215 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027223 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027230 https://support.microsoft.com/help/5027231 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027281 https://support.microsoft.com/help/5027282 View more
-
FreeBSD: VID-1567BE8C-0A15-11EE-8290-A8A1599412C6 (CVE-2023-3214): chromium -- multiple vulnerabilities Severity 9 CVSS (AV:N/AC:M/Au:N/C:C/I:C/A:C) Published 06/13/2023 Created 06/15/2023 Added 06/14/2023 Modified 01/28/2025 Description Use after free in Autofill payments in Google Chrome prior to 114.0.5735.133 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) Solution(s) freebsd-upgrade-package-chromium freebsd-upgrade-package-ungoogled-chromium References CVE-2023-3214
-
SUSE: CVE-2023-3216: SUSE Linux Security Advisory Severity 9 CVSS (AV:N/AC:M/Au:N/C:C/I:C/A:C) Published 06/13/2023 Created 06/19/2023 Added 06/19/2023 Modified 01/28/2025 Description Type confusion in V8 in Google Chrome prior to 114.0.5735.133 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Solution(s) suse-upgrade-chromedriver suse-upgrade-chromium References https://attackerkb.com/topics/cve-2023-3216 CVE - 2023-3216
-
SUSE: CVE-2023-3214: SUSE Linux Security Advisory Severity 9 CVSS (AV:N/AC:M/Au:N/C:C/I:C/A:C) Published 06/13/2023 Created 06/19/2023 Added 06/19/2023 Modified 01/28/2025 Description Use after free in Autofill payments in Google Chrome prior to 114.0.5735.133 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) Solution(s) suse-upgrade-chromedriver suse-upgrade-chromium References https://attackerkb.com/topics/cve-2023-3214 CVE - 2023-3214
-
Fortinet FortiOS: Access of Uninitialized Pointer (CVE-2023-29178) Severity 4 CVSS (AV:N/AC:L/Au:S/C:N/I:N/A:P) Published 06/13/2023 Created 06/23/2023 Added 06/22/2023 Modified 01/28/2025 Description A access of uninitialized pointer vulnerability [CWE-824]in Fortinet FortiProxy version 7.2.0 through 7.2.3 and before 7.0.9 and FortiOS version 7.2.0 through 7.2.4 and before 7.0.11 allows an authenticated attacker to repetitively crash the httpsd process via crafted HTTP or HTTPS requests. Solution(s) fortios-upgrade-latest References https://attackerkb.com/topics/cve-2023-29178 CVE - 2023-29178 https://fortiguard.com/psirt/FG-IR-23-095
-
Fortinet FortiOS: Information Exposure Through Log Files (CVE-2023-26207) Severity 7 CVSS (AV:N/AC:L/Au:S/C:C/I:N/A:N) Published 06/13/2023 Created 06/19/2023 Added 06/19/2023 Modified 01/28/2025 Description An insertion of sensitive information into log file vulnerability in Fortinet FortiOS 7.2.0 through 7.2.4 and FortiProxy 7.0.0 through 7.0.10. 7.2.0 through 7.2.1 allows an attacker to read certain passwords in plain text. Solution(s) fortios-upgrade-latest References https://attackerkb.com/topics/cve-2023-26207 CVE - 2023-26207 https://fortiguard.com/psirt/FG-IR-22-455
-
Gentoo Linux: CVE-2022-28550: JHead: Multiple Vulnerabilities Severity 10 CVSS (AV:N/AC:L/Au:N/C:C/I:C/A:C) Published 06/13/2023 Created 06/24/2024 Added 06/24/2024 Modified 01/28/2025 Description Matthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via shellescape(), jhead.c, jhead. jhead copies strings to a stack buffer when it detects a &i or &o. However, jhead does not check the boundary of the stack buffer. As a result, there will be a stack buffer overflow problem when multiple `&i` or `&o` are given. Solution(s) gentoo-linux-upgrade-media-gfx-jhead References https://attackerkb.com/topics/cve-2022-28550 CVE - 2022-28550 202406-05
-
Microsoft Windows: CVE-2023-29373: Microsoft ODBC Driver Remote Code Execution Vulnerability Severity 9 CVSS (AV:N/AC:M/Au:N/C:C/I:C/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/06/2024 Description Microsoft ODBC Driver Remote Code Execution Vulnerability Solution(s) microsoft-windows-windows_10-1507-kb5027230 microsoft-windows-windows_10-1607-kb5027219 microsoft-windows-windows_10-1809-kb5027222 microsoft-windows-windows_10-21h2-kb5027215 microsoft-windows-windows_10-22h2-kb5027215 microsoft-windows-windows_11-21h2-kb5027223 microsoft-windows-windows_11-22h2-kb5027231 microsoft-windows-windows_server_2012-kb5027281 microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 msft-kb5027256-217a6141-d7e5-4eb3-bae3-fa31c30edc73 msft-kb5027277-121b55ee-2a81-4d6b-84ae-8d5ea84777fe msft-kb5027277-e5a5cbd0-acc8-43e0-964a-35aaad2f36a7 References https://attackerkb.com/topics/cve-2023-29373 CVE - 2023-29373 https://support.microsoft.com/help/5027215 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027223 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027230 https://support.microsoft.com/help/5027231 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027281 https://support.microsoft.com/help/5027282 View more
-
Microsoft Windows: CVE-2023-32020: Windows DNS Spoofing Vulnerability Severity 4 CVSS (AV:N/AC:M/Au:N/C:N/I:P/A:N) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/06/2024 Description Windows DNS Spoofing Vulnerability Solution(s) microsoft-windows-windows_server_2012-kb5027281 microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 msft-kb5027256-217a6141-d7e5-4eb3-bae3-fa31c30edc73 msft-kb5027277-121b55ee-2a81-4d6b-84ae-8d5ea84777fe msft-kb5027277-e5a5cbd0-acc8-43e0-964a-35aaad2f36a7 References https://attackerkb.com/topics/cve-2023-32020 CVE - 2023-32020 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027281 https://support.microsoft.com/help/5027282 View more
-
Microsoft Windows: CVE-2023-32021: Windows SMB Witness Service Security Feature Bypass Vulnerability Severity 8 CVSS (AV:N/AC:L/Au:S/C:N/I:P/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/05/2024 Description Windows SMB Witness Service Security Feature Bypass Vulnerability Solution(s) microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 References https://attackerkb.com/topics/cve-2023-32021 CVE - 2023-32021 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027282
-
Microsoft Windows: CVE-2023-32017: Microsoft PostScript Printer Driver Remote Code Execution Vulnerability Severity 7 CVSS (AV:L/AC:L/Au:S/C:C/I:C/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/06/2024 Description Microsoft PostScript Printer Driver Remote Code Execution Vulnerability Solution(s) microsoft-windows-windows_10-1507-kb5027230 microsoft-windows-windows_10-1607-kb5027219 microsoft-windows-windows_10-1809-kb5027222 microsoft-windows-windows_10-21h2-kb5027215 microsoft-windows-windows_10-22h2-kb5027215 microsoft-windows-windows_11-21h2-kb5027223 microsoft-windows-windows_11-22h2-kb5027231 microsoft-windows-windows_server_2012-kb5027281 microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 msft-kb5027256-217a6141-d7e5-4eb3-bae3-fa31c30edc73 msft-kb5027277-121b55ee-2a81-4d6b-84ae-8d5ea84777fe msft-kb5027277-e5a5cbd0-acc8-43e0-964a-35aaad2f36a7 References https://attackerkb.com/topics/cve-2023-32017 CVE - 2023-32017 https://support.microsoft.com/help/5027215 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027223 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027230 https://support.microsoft.com/help/5027231 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027281 https://support.microsoft.com/help/5027282 View more
-
Microsoft Windows: CVE-2023-32019: Windows Kernel Information Disclosure Vulnerability Severity 4 CVSS (AV:L/AC:M/Au:S/C:C/I:N/A:N) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 08/07/2024 Description Windows Kernel Information Disclosure Vulnerability Solution(s) microsoft-windows-windows_10-1607-kb5027219 microsoft-windows-windows_10-1809-kb5027222 microsoft-windows-windows_10-21h2-kb5027215 microsoft-windows-windows_10-22h2-kb5027215 microsoft-windows-windows_11-21h2-kb5027223 microsoft-windows-windows_11-22h2-kb5027231 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 References https://attackerkb.com/topics/cve-2023-32019 CVE - 2023-32019 https://support.microsoft.com/help/5027215 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027223 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027231 View more
-
Microsoft Windows: CVE-2023-32022: Windows Server Service Security Feature Bypass Vulnerability Severity 8 CVSS (AV:N/AC:L/Au:S/C:P/I:P/A:C) Published 06/13/2023 Created 06/14/2023 Added 06/13/2023 Modified 09/05/2024 Description Windows Server Service Security Feature Bypass Vulnerability Solution(s) microsoft-windows-windows_server_2012_r2-kb5027282 microsoft-windows-windows_server_2016-1607-kb5027219 microsoft-windows-windows_server_2019-1809-kb5027222 microsoft-windows-windows_server_2022-21h2-kb5027225 microsoft-windows-windows_server_2022-22h2-kb5027225 References https://attackerkb.com/topics/cve-2023-32022 CVE - 2023-32022 https://support.microsoft.com/help/5027219 https://support.microsoft.com/help/5027222 https://support.microsoft.com/help/5027225 https://support.microsoft.com/help/5027271 https://support.microsoft.com/help/5027282