政府电脑保安事故协调中心 - 高危保安警报 (A22-12-07): Microsoft 产品多个漏洞 (2022年12月)

Microsoft 发布了安全性更新，以应对影响数个 Microsoft 产品或元件的多个漏洞。有关安全性更新的列表，请参考以下网址：
https://msrc.microsoft.com/update-guide/releaseNote/2022-Dec

有报告指 Microsoft Windows 及 Server 的绕过保安功能漏洞 (CVE-2022-44698) 正受到攻击。系统管理员及用户应立即为受影响的系统安装修补程式，以减低受到网络攻击的风险。

Microsoft Windows 7, 8.1, RT 8.1, 10, 11
Microsoft Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016, 2019, 2022
Microsoft Windows Server 2022 Datacenter: Azure Edition
Microsoft Office 2019, 2019 for Mac, LTSC 2021, LTSC for Mac 2021
Microsoft Outlook for Android
Microsoft SharePoint Foundation 2013
Microsoft SharePoint Enterprise Server 2013, 2016
Microsoft SharePoint Server 2019, Subscription Edition
Microsoft Visio 2013, 2016
Microsoft Visual Studio 2019, 2022
Microsoft 365 Apps for Enterprise
Microsoft Dynamics 365 Business Central 2019, 2020, 2021, 2022
Microsoft Dynamics NAV 2016, 2017, 2018
Microsoft Windows Subsystem for Linux (WSL2)
Microsoft Windows Sysmon
Microsoft Windows Terminal for Windows 10, Terminal for Windows 11
Microsoft .NET Framework 2.0, 3.0, 3.5, 3.5.1, 4.6, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1
.NET 6.0, 7.0
.NET Core 3.1
PowerShell 7.2, 7.3
Azure Network Watcher VM Extension
Raw Image Extension
Remote Desktop client for Windows Desktop

成功利用这些漏洞可以导致远端执行程式码、服务被拒绝、权限提升、泄漏资讯、绕过保安功能及仿冒诈骗，视乎攻击者利用哪个漏洞而定。

受影响产品的修补程式可在 Windows Update 或 Microsoft Update Catalog 获取。受影响系统的系统管理员及用户应遵从产品供应商的建议，立即採取行动以降低风险。

https://msrc.microsoft.com/update-guide/releaseNote/2022-Dec
https://www.hkcert.org/tc/security-bulletin/microsoft-monthly-security-update-december-2022
https://www.cisa.gov/uscert/ncas/current-activity/2022/12/13/microsoft-releases-december-2022-security-updates
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24480
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26804 (to CVE-2022-26806)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41074
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41076 (to CVE-2022-41077)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41089
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41094
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41121
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41127
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-44666 (to CVE-2022-44671)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-44673 (to CVE-2022-44683)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-44687
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-44689 (to CVE-2022-44699)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-44702
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-44704
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-44707
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-44710
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-44713
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47211 (to CVE-2022-47213)

标签 : Microsoft , Windows , Windows Server , Microsoft Office , Outlook , SharePoint , Visio , Visual Studio , Dynamics 365 , WSL , Sysmon , Terminal , .NET Framework , .NET , .NET Core , PowerShell , Azure Network Watcher , Raw Image Extension , Remote Desktop