>
Microsoft Windows Local Security Authority Subsystem Service (LSASS) 安全漏洞
Microsoft Windows Local Security Authority Subsystem Service (LSASS) 安全漏洞
| CNNVD-ID编号 | CNNVD-202210-547 | CVE编号 | CVE-2022-37977 |
| 发布时间 | 2022-10-11 | 更新时间 | 2022-10-12 |
| 漏洞类型 | 其他 | 漏洞来源 | bee13oy with Cyber Kunlun Lab |
| 危险等级 | 中危 | 威胁类型 | 远程 |
| 厂商 | N/A | ||
漏洞介绍
Microsoft Windows Local Security Authority Subsystem Service是美国微软(Microsoft)公司的一个内部程序,负责运行Windows系统安全政策。它在用户登录时电脑单机或服务器时,验证用户身份,管理用户密码变更,并产生访问字符。它也会在窗口安全日志中留下应有的记录。 Microsoft Windows Local Security Authority Subsystem Service (LSASS)存在安全漏洞。以下产品和版本受到影响:Windows 10 Version 21H2 for x64-based Systems,Windows 11 Version 22H2 for ARM64-based Systems,Windows 11 Version 22H2 for x64-based Systems,Windows 10 for 32-bit Systems,Windows 10 for x64-based Systems,Windows 7 for 32-bit Systems Service Pack 1,Windows 7 for x64-based Systems Service Pack 1,Windows 8.1 for 32-bit systems,Windows 8.1 for x64-based systems,Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows 10 Version 1809 for ARM64-based Systems,Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2008 for x64-based Systems Service Pack 2,Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 20H2 for x64-based Systems,Windows 10 Version 20H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 1607 for 32-bit Systems,Windows 10 Version 1607 for x64-based Systems,Windows Server 2016,Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation),Windows Server 2008 R2 for x64-based Systems Service Pack 1,Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation),Windows Server 2012,Windows Server 2012 (Server Core installation),Windows RT 8.1,Windows Server 2008 for 32-bit Systems Service Pack 2,Windows Server 2012 R2,Windows 10 Version 21H1 for ARM64-based Systems,Windows 10 Version 21H1 for 32-bit Systems,Windows 10 Version 20H2 for ARM64-based Systems,Windows 11 for x64-based Systems,Windows 11 for ARM64-based Systems,Windows Server 2016 (Server Core installation),Windows Server 2012 R2 (Server Core installation),Windows 10 Version 21H1 for x64-based Systems,Windows 10 Version 21H2 for 32-bit Systems。漏洞补丁
目前厂商已发布升级了Microsoft Windows Local Security Authority Subsystem Service (LSASS) 安全漏洞的补丁,Microsoft Windows Local Security Authority Subsystem Service (LSASS) 安全漏洞的补丁获取链接: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37977参考网址
来源:MISC
链接:https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37977
来源:cxsecurity.com
链接:https://cxsecurity.com/cveshow/CVE-2022-37977/
来源:vigilance.fr
链接:https://vigilance.fr/vulnerability/Windows-vulnerabilities-of-October-2022-39525
受影响实体
暂无
信息来源
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-202210-547
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论