8 matches found
CVE-2022-24528
Remote Procedure Call Runtime Remote Code Execution Vulnerability...
CVE-2022-24528
Remote Procedure Call Runtime Remote Code Execution Vulnerability...
CVE-2022-24528
CVE-2022-24528 is a Remote Code Execution vulnerability in Windows RPC Runtime. It is a network-exposed issue affecting the Windows RPC runtime, with a high-severity impact (C/H/I/A: high) per CVSS v3.1 (8.8) and a medium base score (6.8) in CVSS v2. The CVSS v3.1 vector indicates network access,...
Critical Remote Code Execution Vulnerabilities in Windows RPC Runtime
Microsoft’s April 2022 Patch Tuesday introduced patches to more than a hundred new vulnerabilities in various components. Three critical vulnerabilities were found and patched in Windows RPC Remote Procedure Call runtime: CVE-2022-24492 and CVE-2022-24528 discovered by Yuki Chen with Cyber KunLun...
KB5012653: Windows 10 version 1507 LTS Security Update (April 2022)
The remote Windows host is missing security update 5012653. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2022-26798, CVE-2022-26801, CVE-2022-26786, CVE-2022-24549, CVE-2022-26794,...
KB5012666: Windows Server 2012 Security Update (April 2022)
The remote Windows host is missing security update 5012666 or cumulative update 5012650. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
KB5012670: Windows 8.1 and Windows Server 2012 R2 Security Update (April 2022)
The remote Windows host is missing security update 5012639 or cumulative update 5012670. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2022-24474, CVE-2022-24481, CVE-2022-24494,...
KB5012632: Windows Server 2008 Security Update (April 2022)
The remote Windows host is missing security update 5012632 or cumulative update 5012658. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...