Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA19245
HistorySep 13, 2022 - 12:00 a.m.

KLA19245 Multiple vulnerabilities in Microsoft Windows

2022-09-1300:00:00
Kaspersky Lab
threats.kaspersky.com
150

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.2 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.28 Low

EPSS

Percentile

96.8%

JSON

Detect date:

09/13/2022

Severity:

Critical

Description:

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, cause denial of service, obtain sensitive information, bypass security restrictions.

Exploitation:

Public exploits exist for this vulnerability.

Affected products:

Windows Server 2016 (Server Core installation)
Windows 10 for 32-bit Systems
Windows Server 2012 (Server Core installation)
Windows 11 for x64-based Systems
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 for x64-based Systems
Windows 10 Version 21H1 for ARM64-based Systems
Windows Server 2012 R2
Windows 10 Version 1607 for 32-bit Systems
Windows 10 Version 21H1 for x64-based Systems
Windows 10 Version 21H1 for 32-bit Systems
Windows Server 2012
Windows Server 2019 (Server Core installation)
Raw Image Extension
Windows 10 Version 1607 for x64-based Systems
Windows Server 2022 Azure Edition Core Hotpatch
Windows 11 for ARM64-based Systems
Windows Server 2022
AV1 Video Extension
Windows Server 2012 R2 (Server Core installation)
Windows RT 8.1
Windows 10 Version 20H2 for 32-bit Systems
Windows 10 Version 20H2 for ARM64-based Systems
Windows 10 Version 21H2 for x64-based Systems
Windows 8.1 for 32-bit systems
Windows Server 2019
Windows Server 2022 (Server Core installation)
Windows 10 Version 1809 for 32-bit Systems
Windows 10 Version 21H2 for ARM64-based Systems
Windows 10 Version 20H2 for x64-based Systems
Windows 8.1 for x64-based systems
Windows Server 2016
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 21H2 for 32-bit Systems

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2022-35840
CVE-2022-38004
CVE-2022-34727
CVE-2022-37969
CVE-2022-30170
CVE-2022-34724
CVE-2022-33647
CVE-2022-34732
CVE-2022-35830
CVE-2022-34726
CVE-2022-34718
CVE-2022-34721
CVE-2022-37957
CVE-2022-37955
CVE-2022-34731
CVE-2022-35803
CVE-2022-30200
CVE-2022-34730
CVE-2022-34729
CVE-2022-38006
CVE-2022-38005
CVE-2022-35831
CVE-2022-34723
CVE-2022-37959
CVE-2022-34725
CVE-2022-38011
CVE-2022-37956
CVE-2022-34733
CVE-2022-35836
CVE-2022-35833
CVE-2022-35832
CVE-2022-37958
CVE-2022-35835
CVE-2022-33679
CVE-2022-26928
CVE-2022-37954
CVE-2022-34734
CVE-2022-34728
CVE-2022-23960
CVE-2022-35841
CVE-2022-34720
CVE-2022-34719
CVE-2022-34722
CVE-2022-35837
CVE-2022-38019
CVE-2022-30196
CVE-2022-35838
CVE-2022-35834

Impacts:

ACE

Related products:

Microsoft Windows

CVE-IDS:

CVE-2022-358408.8Critical
CVE-2022-380047.8Critical
CVE-2022-347278.8Critical
CVE-2022-379697.8Critical
CVE-2022-301707.3High
CVE-2022-347247.5Critical
CVE-2022-336478.1Critical
CVE-2022-347328.8Critical
CVE-2022-358308.1Critical
CVE-2022-347268.8Critical
CVE-2022-347189.8Critical
CVE-2022-347219.8Critical
CVE-2022-379577.8Critical
CVE-2022-379557.8Critical
CVE-2022-347318.8Critical
CVE-2022-358037.8Critical
CVE-2022-302007.8Critical
CVE-2022-347308.8Critical
CVE-2022-347297.8Critical
CVE-2022-380066.5High
CVE-2022-380057.8Critical
CVE-2022-358315.5High
CVE-2022-347235.5High
CVE-2022-379596.5High
CVE-2022-347257.0High
CVE-2022-380117.3High
CVE-2022-379567.8Critical
CVE-2022-347338.8Critical
CVE-2022-358368.8Critical
CVE-2022-358337.5Critical
CVE-2022-358325.5High
CVE-2022-379588.1Critical
CVE-2022-358358.8Critical
CVE-2022-336798.1Critical
CVE-2022-269287.0High
CVE-2022-379547.8Critical
CVE-2022-347348.8Critical
CVE-2022-347285.5High
CVE-2022-239605.6High
CVE-2022-358418.8Critical
CVE-2022-347207.5Critical
CVE-2022-347197.8Critical
CVE-2022-347229.8Critical
CVE-2022-358376.5High
CVE-2022-380197.8Critical
CVE-2022-301968.2Critical
CVE-2022-358387.5Critical
CVE-2022-358348.8Critical

KB list:

5017392
5017377
5017316
5017327
5017365
5017367
5017315
5017305
5017328
5017308
5017370
5023713
5023702
5023697
5026456
5026370
5026368
5026361

Microsoft official advisories:

References

Related

nessus 11
mskb 15
kaspersky 1
talosblog 1
rapid7blog 1
avleonov 1
malwarebytes 1
thn 3
googleprojectzero 1
zdt 1
krebs 1
qualysblog 1
cve 44
prion 45
githubexploit 4
mscve 43
pentestpartners 1
zdi 2
trellix 2
cnvd 3
checkpoint_advisories 6
veracode 1
attackerkb 3
hivepro 3
schneier 1
github 1
osv 1
securelist 1
nessus
nessus
KB5017308: Windows 10 Version 20H2 / 21H1 / 21H2 Security Update (September 2022)
2022-09-13 00:00:00
KB5017328: Windows 11 Security Update (September 2022)
2022-09-13 00:00:00
KB5017373: Windows Server 2008 R2 Security Update (September 2022)
2022-09-13 00:00:00
mskb
mskb
September 13, 2022—KB5017305 (OS Build 14393.5356)
2022-09-13 07:00:00
September 13, 2022—KB5017308 (OS Builds 19042.2006, 19043.2006, and 19044.2006)
2022-09-13 07:00:00
September 13, 2022—KB5017365 (Security-only update)
2022-09-13 07:00:00
kaspersky
kaspersky
KLA19249 Multiple vulnerabilities in Microsoft Products (ESU)
2022-09-13 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday for September 2022 — Snort rules and prominent vulnerabilities
2022-09-13 18:01:00
rapid7blog
rapid7blog
Patch Tuesday - September 2022
2022-09-13 20:11:08
avleonov
avleonov
Microsoft Patch Tuesday September 2022: CLFS Driver EoP, IP packet causes RCE, Windows DNS Server DoS, Spectre-BHB
2022-09-23 22:44:11
malwarebytes
malwarebytes
Update now! Microsoft patches two zero-days
2022-09-14 12:00:00
thn
thn
Microsoft's Latest Security Update Fixes 64 New Flaws, Including a Zero-Day
2022-09-14 04:42:00
APT29 Exploited a Windows Feature to Compromise European Diplomatic Entity Network
2022-11-09 13:47:00
Researchers Reveal Detail for Windows Zero-Day Vulnerability Patched Last Month
2022-10-14 17:34:00
googleprojectzero
googleprojectzero
RC4 Is Still Considered Harmful
2022-10-27 00:00:00
zdt
zdt
Windows Kerberos RC4 MD4 Encryption Downgrade Privilege Escalation Vulnerability
2022-10-04 00:00:00
krebs
krebs
Wormable Flaw, 0days Lead Sept. 2022 Patch Tuesday
2022-09-14 00:23:45
qualysblog
qualysblog
September 2022 Patch Tuesday | Microsoft Releases 63 Vulnerabilities with 5 Critical, plus 16 Microsoft Edge (Chromium-Based); Adobe Releases 7 Advisories, 63 Vulnerabilities with 35 Critical.
2022-09-13 20:00:00
cve
cve
CVE-2022-34723
2022-09-13 19:15:00
CVE-2022-37959
2022-09-13 19:15:00
CVE-2022-26928
2022-09-13 19:15:00
prion
prion
Remote code execution
2022-09-13 19:15:00
Security feature bypass
2022-09-13 19:15:00
Remote code execution
2022-09-13 19:15:00
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2022-11-02 18:38:01
Exploit for Vulnerability in Microsoft
2022-11-29 18:34:08
Exploit for Vulnerability in Microsoft
2022-10-03 11:39:25
mscve
mscve
Windows Secure Channel Denial of Service Vulnerability
2022-09-13 07:00:00
Windows DPAPI (Data Protection Application Programming Interface) Information Disclosure Vulnerability
2022-09-13 07:00:00
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
2022-09-13 07:00:00
pentestpartners
pentestpartners
MS Enterprise app management service RCE. CVE-2022-35841
2022-10-13 05:48:43
zdi
zdi
Microsoft Windows Group Policy Preference Link Following Local Privilege Escalation Vulnerability
2022-09-19 00:00:00
Microsoft Windows DirectX Graphics Use-After-Free Local Privilege Escalation Vulnerability
2022-09-19 00:00:00
trellix
trellix
The Bug Report — September 2022 Edition
2022-10-05 00:00:00
The Bug Report — September 2022 Edition
2022-10-05 00:00:00
cnvd
cnvd
Microsoft Windows has an unspecified vulnerability (CNVD-2022-63614)
2022-09-15 00:00:00
Microsoft Windows TCP/IP Remote Code Execution Vulnerability (CNVD-2022-63613)
2022-09-15 00:00:00
Microsoft Windows Internet has an unspecified vulnerability
2022-09-15 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows GDI Elevation of Privilege (CVE-2022-34729)
2022-09-13 00:00:00
Microsoft DirectX Graphics Kernel Elevation of Privilege (CVE-2022-37954)
2022-09-13 00:00:00
Microsoft Windows ALPC Elevation of Privilege (CVE-2022-34725)
2022-09-13 00:00:00
veracode
veracode
Privilege Escalation
2022-12-08 14:17:02
attackerkb
attackerkb
CVE-2022-26928
2022-09-13 00:00:00
CVE-2022-30170
2022-09-13 00:00:00
CVE-2022-34721
2022-09-13 00:00:00
hivepro
hivepro
Microsoft Rolled Out SPNEGO NEGOEX Critical Vulnerability
2022-12-26 10:37:19
Microsoft busts an actively exploited zero-day and several critical flaws
2022-09-16 09:03:27
Adversaries strike critical Windows IKE flaw in the “Bleed You” campaign
2022-11-30 11:46:31
schneier
schneier
Critical Microsoft Code-Execution Vulnerability
2022-12-22 12:01:37
github
github
DSInternals Credential Roaming Elevation of Privilege Vulnerability
2022-12-06 21:13:49
osv
osv
DSInternals Credential Roaming Elevation of Privilege Vulnerability
2022-12-06 21:13:49
securelist
securelist
Windows CLFS and five exploits used by ransomware operators (Exploit #2 – September 2022)
2023-12-21 10:00:53

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.2 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.28 Low

EPSS

Percentile

96.8%

JSON
Related for KLA19245
nessus11mskb15kaspersky1talosblog1rapid7blog1avleonov1malwarebytes1thn3googleprojectzero1zdt1krebs1qualysblog1cve44prion45githubexploit4mscve43pentestpartners1zdi2trellix2cnvd3checkpoint_advisories6veracode1attackerkb3hivepro3schneier1github1osv1securelist1