One Article Review
| Source |  CISCO Talos |
|---|---|
| Identifiant | 7396114 |
| Date de publication | 2022-10-11 14:11:23 (vue: 2022-10-11 19:06:09) |
| Titre | Microsoft Patch Tuesday for October 2022 - Snort rules and prominent vulnerabilities |
| Texte |  By Jon Munshaw and Vanja Svajcer.Microsoft released its monthly security update Tuesday, disclosing 83 vulnerabilities across the company's hardware and software line, including seven critical issues in Windows' point-to-point tunneling protocol. October's security update features 11 critical vulnerabilities, with the remainder being “important.” One of the most notable vulnerabilities Microsoft fixed this month is CVE-2022-41038, a remote code execution issue in Microsoft SharePoint. There are several other SharePoint vulnerabilities included in this month's Patch Tuesday, though this seems the most severe, as Microsoft continues it to be “more likely” to be exploited. An attacker must be authenticated to the target site with the correct permissions to use manage lists in SharePoint to exploit this vulnerability, and eventually gain the ability to execute remote code on the SharePoint server. CVE-2022-37968, an elevation of privilege vulnerability in Azure Arc Connect, has the highest severity score out of all the vulnerabilities Microsoft fixed this month - a maximum 10 out of 10. Successful exploitation of this vulnerability, which affects the cluster connect feature of Azure Arc-enabled Kubernetes clusters, could allow an unauthenticated user to elevate their privileges as cluster admins and potentially gain control over the Kubernetes cluster. CVE-2022-37976 and CVE-2022-37979 are also critical elevation of privilege vulnerabilities in Windows Active Directory and Hyper-V, respectively. The Windows' point-to-point tunneling protocol, which is a network protocol used to create VPN tunnels between public networks, contains eight vulnerabilities that Microsoft disclosed Tuesday, seven of which are rated “critical” severity: CVE-2022-22035CVE-2022-24504 CVE-2022-30198 CVE-2022-33634 CVE-2022-38000 CVE-2022-38047 CVE-2022-41081 CVE-2022-38000 is the most serious among the group wit |
| Envoyé | Oui |
| Condensat | cve the 300297 cve in microsoft october 2022 22035cve 24504 cve 300290 300296 300298 30198 cve 3304 cve 3307 cve 3308 cve 3310 cve 3311 cve 3313 cve 3315 cve 3316 cve 3317 cve 33634 cve 3370 cve 3373 cve 37968 37976 37979 38000 38000 cve 38047 cve 38048cve 38049 cve 41031 microsoft 41035 a 41038 41081 cve 60693 60696 60698 60701 60705 60706 60708 60709 ability across active additional admins adversaries affects against all allow already also among any arc are attacker attempts authenticated available azure basis being between browser can change chromium cisco cluster clusters code company complete connect contain contains continues control correct could crafted create critical current customers cve date detects directory disclosed disclosing disclosures document: cve downloading edge eight elevate elevation enabled eventually execute execution exploit exploitation exploited feature features firewall fixed future gain google group hardware has highest hyper implement included including information issue issues its jon just kubernetes latest launch likely” line list lists manage many maximum may microsoft month monthly most munshaw must need network networks new not notable note october office one open opening org other out over pack page patch patches: cve pending permissions pieces please point popular potentially privilege privileges prominent protect protocol public purchase rated rating release released releasing remainder remote respectively response rule rules ruleset score secure security seems serious server set seven several severe severity severity: cve sharepoint should sids site snort software some source specially sru stay steps subject subscriber successful successfully svajcer take talos target targets them these though tricking tuesday tunneling tunnels unauthenticated update updating use used user users usually vanja vpn vulnerabilities vulnerability web which windows word world “critical” “important “more ” one |
| Tags | Vulnerability |
| Stories | Uber |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.