Microsoft Windows Active Directory Certificate Services 安全漏洞

CNNVD-ID编号	CNNVD-202210-549	CVE编号	CVE-2022-37976
发布时间	2022-10-11	更新时间	2022-10-12
漏洞类型	其他	漏洞来源	N/A
危险等级	高危	威胁类型	远程
厂商	N/A

漏洞介绍

Microsoft Windows Active Directory是美国微软（Microsoft）公司的一个负责架构中大型网络环境的集中式目录管理服务。存储有关网络上对象的信息，并使管理员和用户可以轻松查找和使用这些信息。 Microsoft Windows Active Directory Certificate Services存在安全漏洞。以下产品和版本受到影响：Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows Server 2016,Windows Server 2016 (Server Core installation),Windows Server 2008 for 32-bit Systems Service Pack 2,Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation),Windows Server 2008 for x64-based Systems Service Pack 2,Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation),Windows Server 2008 R2 for x64-based Systems Service Pack 1,Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation),Windows Server 2012,Windows Server 2012 (Server Core installation),Windows Server 2012 R2,Windows Server 2012 R2 (Server Core installation)。

漏洞补丁

目前厂商已发布升级了Microsoft Windows Active Directory Certificate Services 安全漏洞的补丁，Microsoft Windows Active Directory Certificate Services 安全漏洞的补丁获取链接： https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37976