Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA12524
HistoryMay 10, 2022 - 12:00 a.m.

KLA12524 Multiple vulnerabilities in Microsoft Products (ESU)

2022-05-1000:00:00
Kaspersky Lab
threats.kaspersky.com
46

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.906 High

EPSS

Percentile

98.8%

JSON

Detect date:

05/10/2022

Severity:

Critical

Description:

Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions, gain privileges, cause denial of service, spoof user interface.

Exploitation:

Public exploits exist for this vulnerability.

Affected products:

Windows Server 2008 for 32-bit Systems Service Pack 2
Windows 7 for 32-bit Systems Service Pack 1
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2012 R2 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012
Windows Server 2012 (Server Core installation)

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2022-29137
CVE-2022-22019
CVE-2022-29139
CVE-2022-29129
CVE-2022-29141
CVE-2022-29132
CVE-2022-29130
CVE-2022-29128
CVE-2022-26936
CVE-2022-29115
CVE-2022-29127
CVE-2022-22012
CVE-2022-26931
CVE-2022-22013
CVE-2022-29112
CVE-2022-26937
CVE-2022-29103
CVE-2022-22015
CVE-2022-26926
CVE-2022-23270
CVE-2022-29121
CVE-2022-21972
CVE-2022-26925
CVE-2022-29105
CVE-2022-22011
CVE-2022-26935
CVE-2022-26934
CVE-2022-22014
CVE-2022-29150
CVE-2022-29114
CVE-2022-29138
CVE-2022-26923
CVE-2022-29135
CVE-2022-29104
CVE-2022-29102
CVE-2022-26930
CVE-2022-29151
CVE-2022-29125
CVE-2022-29126
CVE-2022-29123
CVE-2022-26933
CVE-2022-29120
CVE-2022-29134
CVE-2022-29122

Impacts:

ACE

Related products:

Microsoft Windows

CVE-IDS:

CVE-2022-291378.8Critical
CVE-2022-269366.5High
CVE-2022-291157.8Critical
CVE-2022-291274.2Warning
CVE-2022-220129.8Critical
CVE-2022-269317.5Critical
CVE-2022-220138.8Critical
CVE-2022-220198.8Critical
CVE-2022-291398.8Critical
CVE-2022-291298.8Critical
CVE-2022-291418.8Critical
CVE-2022-291126.5High
CVE-2022-269379.8Critical
CVE-2022-291037.8Critical
CVE-2022-220156.5High
CVE-2022-291327.8Critical
CVE-2022-291309.8Critical
CVE-2022-269267.8Critical
CVE-2022-232708.1Critical
CVE-2022-291216.5High
CVE-2022-219728.1Critical
CVE-2022-269255.9High
CVE-2022-291057.8Critical
CVE-2022-220115.5High
CVE-2022-269356.5High
CVE-2022-291288.8Critical
CVE-2022-269346.5High
CVE-2022-220148.8Critical
CVE-2022-291047.8Critical
CVE-2022-291025.5High
CVE-2022-291517.0High
CVE-2022-291226.5High
CVE-2022-291507.0High
CVE-2022-291257.0High
CVE-2022-291387.0High
CVE-2022-269335.5High
CVE-2022-291357.0High
CVE-2022-291346.5High
CVE-2022-269238.8Critical
CVE-2022-269305.5High
CVE-2022-291236.5High
CVE-2022-291206.5High
CVE-2022-291267.0High
CVE-2022-291145.5High

KB list:

5014010
5013999
5014006
5014012
5014018
5014001
5014011
5014017
5025288
5025285

Microsoft official advisories:

References

Related

nessus 12
mskb 16
openvas 8
kaspersky 1
rapid7blog 2
avleonov 1
cisa 2
malwarebytes 1
thn 1
threatpost 2
krebs 1
qualysblog 1
mscve 40
prion 39
cve 40
attackerkb 2
metasploit 1
zdi 5
checkpoint_advisories 4
cnvd 14
githubexploit 4
cisa_kev 2
nessus
nessus
KB5014018: Windows Server 2012 Security Update (May 2022)
2022-05-10 00:00:00
KB5014001: Windows 8.1 and Windows Server 2012 R2 Security Update (May 2022)
2022-05-10 00:00:00
KB5013963: Windows 10 LTS 1507 Security Update (May 2022)
2022-05-10 00:00:00
mskb
mskb
May 10, 2022—KB5014001 (Security-only update)
2022-05-12 07:00:00
May 10, 2022—KB5014011 (Monthly Rollup)
2022-05-12 07:00:00
May 10, 2022—KB5014018 (Security-only update)
2022-05-12 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5014011)
2022-05-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5013963)
2022-05-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5014012)
2022-05-11 00:00:00
kaspersky
kaspersky
KLA12526 Multiple vulnerabilities in Microsoft Windows
2022-05-10 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - May 2022
2022-05-10 19:59:20
Metasploit Framework 6.3 Released
2023-01-30 14:00:00
avleonov
avleonov
Microsoft Patch Tuesday May 2022: Edge RCE, PetitPotam LSA Spoofing, bad patches
2022-05-26 21:21:57
cisa
cisa
CISA Adds One Known Exploited Vulnerability to Catalog
2022-07-01 00:00:00
CISA Temporarily Removes CVE-2022-26925 from Known Exploited Vulnerability Catalog
2022-05-13 00:00:00
malwarebytes
malwarebytes
Update now! Microsoft releases patches, including one for actively exploited zero-day
2022-05-11 14:36:23
thn
thn
Microsoft Releases Fix for New Zero-Day with May 2022 Patch Tuesday Updates
2022-05-11 05:29:00
threatpost
threatpost
Microsoft’s May Patch Tuesday Updates Cause Windows AD Authentication Errors
2022-05-16 11:46:39
Actively Exploited Zero-Day Bug Patched by Microsoft
2022-05-11 11:12:11
krebs
krebs
Microsoft Patch Tuesday, May 2022 Edition
2022-05-11 02:34:59
qualysblog
qualysblog
May 2022 Patch Tuesday | Microsoft Releases 75 Vulnerabilities with 8 Critical; Adobe Releases 5 Advisories, 18 Vulnerabilities with 16 Critical.
2022-05-10 19:29:16
mscve
mscve
Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability
2022-05-10 07:00:00
Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability
2022-05-10 07:00:00
Windows Print Spooler Information Disclosure Vulnerability
2022-05-10 08:00:00
prion
prion
Privilege escalation
2022-05-10 21:15:00
Security feature bypass
2022-05-10 21:15:00
Remote code execution
2022-05-10 21:15:00
cve
cve
CVE-2022-29138
2022-05-10 21:15:00
CVE-2022-29151
2022-05-10 21:15:00
CVE-2022-29123
2022-05-10 21:15:00
attackerkb
attackerkb
CVE-2022-26923
2022-05-10 00:00:00
CVE-2022-26925
2022-05-10 00:00:00
metasploit
metasploit
Active Directory Certificate Services (ADCS) privilege escalation (Certifried)
2023-01-13 14:30:50
zdi
zdi
Microsoft Windows Print Spooler Service Link Following Local Privilege Escalation Vulnerability
2022-05-10 00:00:00
Microsoft Windows Print Spooler Service Link Following Local Privilege Escalation Vulnerability
2022-05-10 00:00:00
Microsoft Windows Print Spooler Service Directory Traversal Information Disclosure Vulnerability
2022-05-10 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Print Spooler Elevation of Privilege (CVE-2022-29104)
2022-05-10 00:00:00
Microsoft Point-to-Point Tunneling Protocol Remote Code Execution (CVE-2022-23270)
2022-05-10 00:00:00
Microsoft Windows Network File System Remote Code Execution (CVE-2022-26937)
2022-05-17 00:00:00
cnvd
cnvd
Microsoft Windows LDAP Remote Code Execution Vulnerability (CNVD-2022-72855)
2022-05-13 00:00:00
Microsoft Windows Push Notifications Elevation of Privilege Vulnerability
2022-05-12 00:00:00
Microsoft Windows Remote Access Connection Manager Elevation of Privilege Vulnerability (CNVD-2022-70059)
2022-05-12 00:00:00
githubexploit
githubexploit
Exploit for Improper Certificate Validation in Microsoft
2022-08-17 21:13:49
Exploit for Vulnerability in Microsoft
2022-06-17 01:42:55
Exploit for Improper Certificate Validation in Microsoft
2023-11-28 16:13:36
cisa_kev
cisa_kev
Microsoft Windows LSA Spoofing Vulnerability
2022-07-01 00:00:00
Microsoft Active Directory Domain Services Privilege Escalation Vulnerability
2022-08-18 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.906 High

EPSS

Percentile

98.8%

JSON
Related for KLA12524
nessus12mskb16openvas8kaspersky1rapid7blog2avleonov1cisa2malwarebytes1thn1threatpost2krebs1qualysblog1mscve40prion39cve40attackerkb2metasploit1zdi5checkpoint_advisories4cnvd14githubexploit4cisa_kev2