CNNVD关于微软多个安全漏洞的通报

CNNVD关于微软多个安全漏洞的通报
2024-10-11 00:52:0 Author: mp.weixin.qq.com(查看原文) 阅读量:0 收藏

点击蓝字关注我们

漏洞情況

近日，微软官方发布了多个安全漏洞的公告，其中微软产品本身漏洞123个，影响到微软产品的其他厂商漏洞2个。微软Microsoft Windows、Microsoft Windows Network Address Translation、Microsoft Windows Remote Registry Service、Microsoft Windows Scripting等多个产品和系统受漏洞影响。目前，微软官方已经发布了漏洞修复补丁，建议用户及时确认是否受到漏洞影响，尽快采取修补措施。

一
漏洞介绍

2024年10月9日，微软发布了2024年10月份安全更新，共125个漏洞的补丁程序，CNNVD对这些漏洞进行了收录。本次更新主要涵盖了Microsoft Windows 和 Windows 组件、Microsoft Windows Network Address Translation、Microsoft Windows Remote Registry Service、Microsoft Windows Scripting、Microsoft Azure Monitor、Microsoft OpenSSH等。CNNVD对其危害等级进行了评价，其中超危漏洞2个，高危漏洞79个，中危漏洞44个。

微软多个产品和系统版本受漏洞影响，具体影响范围可访问微软官方网站查询： https://portal.msrc.microsoft.com/zh-cn/security-guidance

二
漏洞详情

此次更新共125个漏洞的补丁程序，包括118个新增漏洞的补丁程序、5个更新漏洞的补丁程序和2个影响微软产品的其他厂商漏洞的补丁程序。

此次更新共包括118个新增漏洞的补丁程序，其中超危漏洞2个，高危漏洞76个，中危漏洞40个。

序号	漏洞名称	CNNVD编号	CVE编号	危害等级	官方链接
1	Microsoft Windows Netlogon 授权问题漏洞	CNNVD-202410-842	CVE-2024-38124	超危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38124
2	Microsoft Configuration Manager SQL注入漏洞	CNNVD-202410-834	CVE-2024-43468	超危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43468
3	Microsoft Hyper-V 输入验证错误漏洞	CNNVD-202410-856	CVE-2024-20659	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20659
4	Microsoft Hyper-V 安全漏洞	CNNVD-202410-851	CVE-2024-30092	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30092
5	Microsoft OpenSSH 安全漏洞	CNNVD-202410-844	CVE-2024-38029	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38029
6	Microsoft Azure Monitor 后置链接漏洞	CNNVD-202410-843	CVE-2024-38097	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38097
7	Microsoft Windows Kerberos 安全漏洞	CNNVD-202410-847	CVE-2024-38129	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38129
8	Microsoft BranchCache 资源管理错误漏洞	CNNVD-202410-841	CVE-2024-38149	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38149
9	Microsoft Azure Stack 安全漏洞	CNNVD-202410-846	CVE-2024-38179	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38179
10	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-840	CVE-2024-38212	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38212
11	Microsoft Visual Studio和Microsoft .NET 资源管理错误漏洞	CNNVD-202410-839	CVE-2024-38229	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38229
12	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-838	CVE-2024-38261	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38261
13	Microsoft Windows Remote Desktop Licensing Service 安全漏洞	CNNVD-202410-835	CVE-2024-38262	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38262
14	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-837	CVE-2024-38265	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38265
15	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-833	CVE-2024-43453	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43453
16	Microsoft .NET、Microsoft .NET Framework和Microsoft Visual Studio 安全漏洞	CNNVD-202410-831	CVE-2024-43483	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43483
17	Microsoft .NET、Microsoft .NET Framework和Microsoft Visual Studio 安全漏洞	CNNVD-202410-829	CVE-2024-43484	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43484
18	Microsoft .NET和Microsoft Visual Studio 安全漏洞	CNNVD-202410-828	CVE-2024-43485	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43485
19	Microsoft Visual Studio Code 访问控制错误漏洞	CNNVD-202410-827	CVE-2024-43488	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43488
20	Microsoft DeepSpeed 命令注入漏洞	CNNVD-202410-824	CVE-2024-43497	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43497
21	Microsoft Windows Common Log File System Driver 后置链接漏洞	CNNVD-202410-822	CVE-2024-43501	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43501
22	Microsoft Windows Kernel 安全漏洞	CNNVD-202410-821	CVE-2024-43502	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43502
23	Microsoft SharePoint 访问控制错误漏洞	CNNVD-202410-820	CVE-2024-43503	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43503
24	Microsoft Excel 资源管理错误漏洞	CNNVD-202410-826	CVE-2024-43504	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43504
25	Microsoft Office Visio 安全漏洞	CNNVD-202410-825	CVE-2024-43505	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43505
26	Microsoft BranchCache 资源管理错误漏洞	CNNVD-202410-819	CVE-2024-43506	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43506
27	Microsoft Graphics Component 资源管理错误漏洞	CNNVD-202410-815	CVE-2024-43509	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43509
28	Microsoft Windows Kernel 安全漏洞	CNNVD-202410-816	CVE-2024-43511	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43511
29	Microsoft Windows Resilient File System 资源管理错误漏洞	CNNVD-202410-811	CVE-2024-43514	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43514
30	Microsoft Internet Small Computer Systems Interface 资源管理错误漏洞	CNNVD-202410-814	CVE-2024-43515	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43515
31	Microsoft Windows Secure Kernel Mode 安全漏洞	CNNVD-202410-810	CVE-2024-43516	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43516
32	Microsoft ActiveX 安全漏洞	CNNVD-202410-813	CVE-2024-43517	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43517
33	Microsoft Windows Telephony Server 安全漏洞	CNNVD-202410-809	CVE-2024-43518	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43518
34	Microsoft OLE DB Provider for SQL Server 安全漏洞	CNNVD-202410-808	CVE-2024-43519	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43519
35	Microsoft Hyper-V 安全漏洞	CNNVD-202410-806	CVE-2024-43521	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43521
36	Microsoft Local Security Authority Server 安全漏洞	CNNVD-202410-803	CVE-2024-43522	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43522
37	Microsoft Windows Kernel 安全漏洞	CNNVD-202410-800	CVE-2024-43527	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43527
38	Microsoft Windows Secure Kernel Mode 安全漏洞	CNNVD-202410-799	CVE-2024-43528	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43528
39	Microsoft Windows Print Spooler Components 安全漏洞	CNNVD-202410-798	CVE-2024-43529	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43529
40	Microsoft Windows Remote Registry Service 安全漏洞	CNNVD-202410-797	CVE-2024-43532	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43532
41	Microsoft Remote Desktop Client 资源管理错误漏洞	CNNVD-202410-794	CVE-2024-43533	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43533
42	Microsoft Windows Kernel Mode Drivers 资源管理错误漏洞	CNNVD-202410-792	CVE-2024-43535	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43535
43	Microsoft Simple Certificate Enrollment Protocol 资源管理错误漏洞	CNNVD-202410-789	CVE-2024-43541	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43541
44	Microsoft Simple Certificate Enrollment Protocol 资源管理错误漏洞	CNNVD-202410-784	CVE-2024-43544	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43544
45	Microsoft Windows Online Certificate Status Protocol 资源管理错误漏洞	CNNVD-202410-783	CVE-2024-43545	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43545
46	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-782	CVE-2024-43549	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43549
47	Microsoft Windows Secure Channel 信任管理问题漏洞	CNNVD-202410-781	CVE-2024-43550	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43550
48	Microsoft Windows Storage Services 后置链接漏洞	CNNVD-202410-780	CVE-2024-43551	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43551
49	Microsoft Windows Shell 资源管理错误漏洞	CNNVD-202410-779	CVE-2024-43552	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43552
50	Microsoft Windows NT OS Kernel 安全漏洞	CNNVD-202410-776	CVE-2024-43553	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43553
51	Microsoft Graphics Component 资源管理错误漏洞	CNNVD-202410-773	CVE-2024-43556	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43556
52	Microsoft Windows Storage Port Driver 安全漏洞	CNNVD-202410-771	CVE-2024-43560	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43560
53	Microsoft Windows Network Address Translation 缓冲区错误漏洞	CNNVD-202410-769	CVE-2024-43562	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43562
54	Microsoft Windows Ancillary Function Driver for WinSock 安全漏洞	CNNVD-202410-766	CVE-2024-43563	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43563
55	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-765	CVE-2024-43564	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43564
56	Microsoft Windows Network Address Translation 缓冲区错误漏洞	CNNVD-202410-764	CVE-2024-43565	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43565
57	Microsoft Hyper-V 安全漏洞	CNNVD-202410-768	CVE-2024-43567	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43567
58	Microsoft Management Console 安全漏洞	CNNVD-202410-762	CVE-2024-43572	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43572
59	Microsoft Speech Application Programming Interface 资源管理错误漏洞	CNNVD-202410-760	CVE-2024-43574	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43574
60	Microsoft Hyper-V 资源管理错误漏洞	CNNVD-202410-757	CVE-2024-43575	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43575
61	Microsoft Office 代码问题漏洞	CNNVD-202410-756	CVE-2024-43576	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43576
62	Microsoft OpenSSH 安全漏洞	CNNVD-202410-759	CVE-2024-43581	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43581
63	Microsoft Windows Remote Desktop Protocol 资源管理错误漏洞	CNNVD-202410-758	CVE-2024-43582	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43582
64	Microsoft Winlogon 安全漏洞	CNNVD-202410-755	CVE-2024-43583	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43583
65	Microsoft Windows Scripting 安全漏洞	CNNVD-202410-754	CVE-2024-43584	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43584
66	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-752	CVE-2024-43589	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43589
67	Microsoft Visual C++ Redistributable Installer 访问控制错误漏洞	CNNVD-202410-749	CVE-2024-43590	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43590
68	Microsoft Azure Command Line Integration 命令注入漏洞	CNNVD-202410-748	CVE-2024-43591	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43591
69	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-747	CVE-2024-43592	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43592
70	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-746	CVE-2024-43593	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43593
71	Microsoft Remote Desktop Client 资源管理错误漏洞	CNNVD-202410-750	CVE-2024-43599	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43599
72	Microsoft Visual Studio Code 命令注入漏洞	CNNVD-202410-745	CVE-2024-43601	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43601
73	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-742	CVE-2024-43607	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43607
74	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-739	CVE-2024-43608	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43608
75	Microsoft Copilot Studio 信息泄露漏洞	CNNVD-202410-860	CVE-2024-43610	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43610
76	Microsoft Windows Routing and Remote Access Service 安全漏洞	CNNVD-202410-737	CVE-2024-43611	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43611
77	Microsoft OpenSSH 安全漏洞	CNNVD-202410-741	CVE-2024-43615	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43615
78	Microsoft Office 代码问题漏洞	CNNVD-202410-735	CVE-2024-43616	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43616
79	Microsoft Windows 输入验证错误漏洞	CNNVD-202410-850	CVE-2024-37976	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37976
80	Microsoft Windows Kernel 安全漏洞	CNNVD-202410-849	CVE-2024-37979	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37979
81	Microsoft Windows 安全漏洞	CNNVD-202410-848	CVE-2024-37982	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37982
82	Microsoft Windows 安全漏洞	CNNVD-202410-845	CVE-2024-37983	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37983
83	Microsoft Windows Remote Desktop Services 访问控制错误漏洞	CNNVD-202410-832	CVE-2024-43456	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43456
84	Microsoft Service Fabric 安全漏洞	CNNVD-202410-836	CVE-2024-43480	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43480
85	Microsoft Power BI 跨站脚本漏洞	CNNVD-202410-830	CVE-2024-43481	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43481
86	Microsoft Windows Resilient File System 安全漏洞	CNNVD-202410-823	CVE-2024-43500	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43500
87	Microsoft Graphics Component 安全漏洞	CNNVD-202410-818	CVE-2024-43508	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43508
88	Microsoft Windows Standards-Based Storage Management Service 安全漏洞	CNNVD-202410-817	CVE-2024-43512	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43512
89	Microsoft Windows BitLocker 安全漏洞	CNNVD-202410-812	CVE-2024-43513	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43513
90	Microsoft Windows Kernel 代码问题漏洞	CNNVD-202410-807	CVE-2024-43520	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43520
91	Microsoft Windows Mobile Broadband Driver 安全漏洞	CNNVD-202410-802	CVE-2024-43523	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43523
92	Microsoft Windows Mobile Broadband Driver 代码问题漏洞	CNNVD-202410-801	CVE-2024-43524	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43524
93	Microsoft Windows Mobile Broadband Driver 安全漏洞	CNNVD-202410-805	CVE-2024-43525	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43525
94	Microsoft Windows Mobile Broadband Driver 安全漏洞	CNNVD-202410-804	CVE-2024-43526	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43526
95	Microsoft Graphics Component 缓冲区错误漏洞	CNNVD-202410-793	CVE-2024-43534	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43534
96	Microsoft Windows Mobile Broadband Driver 安全漏洞	CNNVD-202410-795	CVE-2024-43536	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43536
97	Microsoft Windows Mobile Broadband Driver 安全漏洞	CNNVD-202410-796	CVE-2024-43537	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43537
98	Microsoft Windows Mobile Broadband Driver 缓冲区错误漏洞	CNNVD-202410-791	CVE-2024-43538	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43538
99	Microsoft Windows Mobile Broadband Driver 缓冲区错误漏洞	CNNVD-202410-790	CVE-2024-43540	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43540
100	Microsoft Windows Mobile Broadband Driver 缓冲区错误漏洞	CNNVD-202410-788	CVE-2024-43542	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43542
101	Microsoft Windows Mobile Broadband Driver 输入验证错误漏洞	CNNVD-202410-785	CVE-2024-43543	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43543
102	Microsoft Windows Cryptographic Services 安全漏洞	CNNVD-202410-787	CVE-2024-43546	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43546
103	Microsoft Windows Kerberos 安全漏洞	CNNVD-202410-786	CVE-2024-43547	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43547
104	Microsoft Windows Kernel Mode Drivers 安全漏洞	CNNVD-202410-775	CVE-2024-43554	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43554
105	Microsoft Windows Mobile Broadband Driver 安全漏洞	CNNVD-202410-774	CVE-2024-43555	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43555
106	Microsoft Windows Mobile Broadband Driver 缓冲区错误漏洞	CNNVD-202410-777	CVE-2024-43557	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43557
107	Microsoft Windows Mobile Broadband Driver 缓冲区错误漏洞	CNNVD-202410-778	CVE-2024-43558	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43558
108	Microsoft Windows Mobile Broadband Driver 代码问题漏洞	CNNVD-202410-772	CVE-2024-43559	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43559
109	Microsoft Windows Mobile Broadband Driver 缓冲区错误漏洞	CNNVD-202410-770	CVE-2024-43561	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43561
110	Microsoft Windows Kernel 资源管理错误漏洞	CNNVD-202410-767	CVE-2024-43570	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43570
111	Microsoft Sudo for Windows 安全漏洞	CNNVD-202410-763	CVE-2024-43571	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43571
112	Microsoft Windows MSHTML Platform 跨站脚本漏洞	CNNVD-202410-761	CVE-2024-43573	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43573
113	Microsoft Code Integrity Guard 安全漏洞	CNNVD-202410-753	CVE-2024-43585	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43585
114	Microsoft Visual Studio 后置链接漏洞	CNNVD-202410-744	CVE-2024-43603	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43603
115	Microsoft Outlook for Android 安全漏洞	CNNVD-202410-743	CVE-2024-43604	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43604
116	Microsoft Office 信息泄露漏洞	CNNVD-202410-738	CVE-2024-43609	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43609
117	Microsoft Power BI Report Server 跨站脚本漏洞	CNNVD-202410-740	CVE-2024-43612	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43612
118	Microsoft Defender 安全漏洞	CNNVD-202410-736	CVE-2024-43614	中危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43614

此次更新共包括5个更新漏洞的补丁程序，其中高危漏洞3个，中危漏洞2个。

序号	漏洞名称	CNNVD编号	CVE编号	危害等级	官方链接
1	Microsoft Windows Bluetooth Service 安全漏洞	CNNVD-202101-891	CVE-2021-1638	高危	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1638
2	Microsoft SQL Server 访问控制错误漏洞	CNNVD-202409-796	CVE-2024-37341	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37341
3	Microsoft Visual Studio和Microsoft .NET 安全漏洞	CNNVD-202407-724	CVE-2024-38095	高危	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38095
4	Microsoft Windows Bluetooth Service 访问控制错误漏洞	CNNVD-202101-858	CVE-2021-1683	中危	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1683
5	Microsoft Windows Bluetooth Service 安全漏洞	CNNVD-202101-857	CVE-2021-1684	中危	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1684

此次更新共包括2个影响微软产品的其他厂商漏洞的补丁程序，其中中危漏洞2个。

序号	漏洞名称	CNNVD编号	CVE编号	危害等级	厂商	官方链接
1	AMD Processors 信息泄露漏洞	CNNVD-202203-688	CVE-2022-0001	中危	AMD	https://ubuntu.com/security/notices/USN-5317-1
2	libcurl 安全漏洞	CNNVD-202407-2359	CVE-2024-6197	中危	cURL	https://curl.se/docs/CVE-2024-6197.html

三
修复建议

目前，微软官方已经发布补丁修复了上述漏洞，建议用户及时确认漏洞影响，尽快采取修补措施。

微软官方补丁下载地址：

https://msrc.microsoft.com/update-guide/en-us

CNNVD将继续跟踪上述漏洞的相关情况，及时发布相关信息。如有需要，可与CNNVD联系。联系方式: [email protected]

文章来源: https://mp.weixin.qq.com/s?__biz=MzAxODY1OTM5OQ==&mid=2651457167&idx=1&sn=56ea795213626509370331455a943cd6&chksm=802c47a7b75bceb1b68ca7c1849c6f45e0beee273cacfc8e4ae3d56f5655e644c4ddc6f559a4&scene=58&subscene=0#rd
如有侵权请联系:admin#unsafe.sh

一 漏洞介绍

二漏洞详情

三修复建议

一
漏洞介绍

二
漏洞详情

三
修复建议