描述:
Microsoft 發布了安全性更新以應對數個影響 Microsoft 產品或元件的多個漏洞。有關安全性更新的列表,請參考以下網址:
https://msrc.microsoft.com/update-guide/releaseNote/2022-Feb
有報告指在 Microsoft Windows 及 Server 的一個權限提升漏洞 (CVE-2022-21989) 的技術詳情已被公開,而且多個漏洞 (CVE-2022-21984、CVE-2022-21995、CVE-2022-21997、CVE-2022-21999、CVE-2022-22005、CVE-2022-22717 及 CVE-2022-22718) 正受到很高的網絡攻擊風險。系統管理員應立即為受影響的系統安裝修補程式,以減低受到網絡攻擊的風險。
受影響的系統:
- Microsoft Windows 7, 8.1, RT 8.1, 10, 11
- Microsoft Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016, 2019, 2022, 2022 Azure Edition Core Hotpatch
- Microsoft Windows Server, version 20H2
- Microsoft Office 2013, 2013 Click-to-Run, 2013 RT, 2016, 2019, 2019 for Mac, LTSC 2021, LTSC for Mac 2021
- Microsoft Office Online Server
- Microsoft Office Web Apps Server 2013
- Microsoft Excel 2013, 2013 RT, 2016
- Microsoft Outlook 2016 for Mac
- Microsoft SharePoint Enterprise Server 2013, 2016
- Microsoft SharePoint Foundation 2013
- Microsoft SharePoint Server 2019, Subscription Edition
- Microsoft 365 Apps for Enterprise
- Microsoft Dynamics 365 (on-premises) version 8.2, version 9.0
- Microsoft Visual Studio 2019, 2022
- Visual Studio 2019 for Mac version 8.10
- Visual Studio Code
- .NET 5.0, 6.0
- Azure Data Explorer
- HEVC Video Extensions
- Microsoft Teams for Android, iOS
- Microsoft Teams Admin Center
- OneDrive for Android
- SQL Server 2019 for Linux Containers
- VP9 Video Extensions
影響:
成功利用漏洞可以導致遠端執行程式碼、服務受阻斷、權限提升、泄漏資訊、繞過保安功能及仿冒詐騙,視乎攻擊者利用哪個漏洞而定。
建議:
受影響產品的修補程式可在 Windows Update 或 Microsoft Update Catalog 獲取。受影響系統的用戶應遵從產品供應商的建議,立即採取行動以降低風險。
進一步資訊:
- https://msrc.microsoft.com/update-guide/releaseNote/2022-Feb
- https://www.hkcert.org/tc/security-bulletin/microsoft-monthly-security-update-february-2022
- https://www.cisa.gov/uscert/ncas/current-activity/2022/02/08/microsoft-releases-february-2022-security-updates
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21844
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21926
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21927
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21957
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21965
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21968
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21971
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21974
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21981
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21984 (to CVE-2022-21989)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21991 (to CVE-2022-22005)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22709
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22710
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22712
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22715 (to CVE-2022-22718)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23252
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23254 (to CVE-2022-23256)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23269
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23271 (to CVE-2022-23274)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23276
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23280