¡¾Îó²îͨ¸æ¡¿Î¢Èí4Ô¶à¸öÇå¾²Îó²î

Ðû²¼Ê±¼ä 2024-04-10

Ò»¡¢Îó²î¸ÅÊö

2024Äê4ÔÂ9ÈÕ £¬Î¢ÈíÐû²¼ÁË4ÔÂÇå¾²¸üР£¬±¾´Î¸üй²ÐÞ¸´ÁË150¸öÎó²î£¨²»°üÀ¨Ö®Ç°ÐÞ¸´µÄMicrosoft Edge ºÍMarinerÎó²î£© £¬Îó²îÀàÐÍ°üÀ¨ÌØȨÌáÉýÎó²î¡¢Çå¾²¹¦Ð§ÈƹýÎó²î¡¢Ô¶³Ì´úÂëÖ´ÐÐÎó²î¡¢ÐÅϢй¶Îó²î¡¢¾Ü¾ø·þÎñÎó²îºÍÓÕÆ­Îó²îµÈ ¡£

±¾´ÎÇå¾²¸üÐÂÖаüÀ¨2¸ö±»Æð¾¢Ê¹ÓõÄ0 dayÎó²î£º

CVE-2024-26234£ºProxy DriverÓÕÆ­Îó²î

¸ÃÎó²îµÄCVSSÆÀ·ÖΪ6.7 £¬ÓëSophos X-Ops ·¢Ã÷µÄÓÐÓÃMicrosoftÓ²¼þ¿¯ÐÐÉÌÖ¤ÊéÊðÃûµÄ¶ñÒâÇý¶¯³ÌÐòÔ˶¯Ïà¹Ø £¬¸ÃÇý¶¯³ÌÐò±»ÓÃÀ´°²ÅŶñÒâºóÃÅ £¬ÏÖÔÚ¸ÃÎó²îÒÑ·¢Ã÷±»Ê¹Óò¢ÒѹûÕæÅû¶ ¡£

CVE-2024-29988£ºSmartScreen PromptÇå¾²¹¦Ð§ÈƹýÎó²î

¸ÃÎó²îµÄCVSSÆÀ·ÖΪ8.8 £¬ÍþвÕß¿ÉÒÔÏòÄ¿µÄÓû§·¢ËÍÌØÖÆÎļþ £¬²¢ÓÕµ¼Óû§Ê¹ÓÃÇëÇó²»ÏÔʾUI µÄÆô¶¯Æ÷Ó¦ÓóÌÐòÀ´Æô¶¯¶ñÒâÎļþ £¬¿ÉÄÜÔÚÎļþ·­¿ªÊ±ÈƹýMicrosoft Defender Smartscreen ÌáÐÑ £¬ÔÚÄ¿µÄϵͳÉÏÖ´ÐжñÒâ´úÂë ¡£ÏÖÔÚ΢Èí¹Ù·½²¢Î´½«¸ÃÎó²î±ê¼ÇΪÒѱ»Ê¹Óà £¬µ«¸ÃÎó²î¿ÉÄܱ£´æÔÚҰʹÓà ¡£

±¾´ÎÇå¾²¸üÐÂÖÐÆÀ¼¶ÎªÑÏÖصÄ3¸öÎó²î°üÀ¨£º

CVE-2024-29053£ºMicrosoft Defender for IoT Ô¶³Ì´úÂëÖ´ÐÐÎó²î

Microsoft Defender for IoTÖб£´æ·¾¶±éÀúÎó²î £¬¸ÃÎó²îµÄCVSSÆÀ·ÖΪ8.8 £¬ÓÐȨ»á¼ûÎļþÉÏ´«¹¦Ð§µÄ¾­ÓÉÉí·ÝÑéÖ¤µÄÍþвÕß¿ÉÒÔͨ¹ý½«¶ñÒâÎļþÉÏ´«µ½·þÎñÆ÷ÉϵÄÃô¸ÐλÖÃÀ´Ê¹Óø÷¾¶±éÀúÎó²î £¬ÀÖ³ÉʹÓÿÉÄܵ¼ÖÂÔ¶³Ì´úÂëÖ´ÐÐ ¡£

CVE-2024-21323£ºMicrosoft Defender for IoT Ô¶³Ì´úÂëÖ´ÐÐÎó²î

Microsoft Defender for IoTÖб£´æ·¾¶±éÀúÎó²î £¬¸ÃÎó²îµÄCVSSÆÀ·ÖΪ8.8 £¬¾­ÓÉÉí·ÝÑéÖ¤²¢»ñµÃÆô¶¯¸üÐÂÀú³ÌËùÐèµÄȨÏÞµÄÍþвÕß¿ÉÏòDefender for IoT ´«¸ÐÆ÷·¢ËÍ tar ÎļþÀ´Ê¹ÓøÃÎó²î ¡£ÌáÈ¡Àú³ÌÍê³Éºó £¬ÍþвÕ߾ͿÉÒÔ·¢ËÍδÊðÃûµÄ¸üаü £¬²¢ÁýÕÖËûÃÇÑ¡ÔñµÄÈκÎÎļþ ¡£

CVE-2024-21322£ºMicrosoft Defender for IoT Ô¶³Ì´úÂëÖ´ÐÐÎó²î

Microsoft Defender for IoTÖб£´æÏÂÁî×¢ÈëÎó²î £¬¸ÃÎó²îµÄCVSSÆÀ·ÖΪ7.2 £¬¾ßÓÐWeb Ó¦ÓóÌÐòµÄÖÎÀíȨÏÞµÄÍþвÕß¿ÉʹÓøÃÎó²îµ¼ÖÂÔ¶³Ì´úÂëÖ´ÐÐ ¡£

³ýCVE-2024-29988Íâ £¬Î¢ÈíµÄ¿ÉʹÓÃÐÔÆÀ¹ÀÖÐÆäËû¡°±»Ê¹ÓõĿÉÄÜÐԽϸߡ±µÄÎó²î»¹°üÀ¨£º

l  CVE-2024-26209£ºMicrosoft ÍâµØÇå¾²»ú¹¹×Óϵͳ·þÎñÖб£´æÐÅϢй¶Îó²î £¬ÀÖ³ÉʹÓøÃÎó²î¿ÉÄܵ¼ÖÂй¶δ³õʼ»¯µÄÄÚ´æ ¡£

l  CVE-2024-26218£ºWindows ÄÚºËÖб£´æÌáȨÎó²î £¬ÀÖ³ÉʹÓøÃÎó²î¿ÉÒÔ»ñµÃSYSTEMȨÏÞ ¡£

l  CVE-2024-26211£ºWindows Ô¶³Ì»á¼ûÅþÁ¬ÖÎÀíÆ÷Öб£´æÌØȨÌáÉýÎó²î £¬ÀÖ³ÉʹÓøÃÎó²î¿ÉÒÔ»ñµÃSYSTEMȨÏÞ ¡£

l  CVE-2024-26230ºÍCVE-2024-26239£ºWindows Telephony Server Öб£´æÌØȨÌáÉýÎó²î £¬ÀÖ³ÉʹÓøÃÎó²î¿ÉÒÔ»ñµÃSYSTEMȨÏÞ ¡£

l  CVE-2024-29056£ºWindows Éí·ÝÑéÖ¤Öб£´æÌØȨÌáÉýÎó²î £¬ÀÖ³ÉʹÓøÃÎó²îµÄÍþвÕß¿ÉÒÔÉó²éijЩÃô¸ÐÐÅÏ¢ ¡£

l  CVE-2024-26241£ºWin32kÖб£´æÌáȨÎó²î £¬ÀÖ³ÉʹÓøÃÎó²î¿ÉÒÔ»ñµÃSYSTEMȨÏÞ ¡£

l  CVE-2024-28921ºÍCVE-2024-28903£ºÇå¾²Æô¶¯Öб£´æÇå¾²¹¦Ð§ÈƹýÎó²î £¬ÀÖ³ÉʹÓÃÕâЩÎó²î¿ÉÄܵ¼ÖÂÍþвÕßÈƹýÇå¾²Æô¶¯ ¡£

l  CVE-2024-26158£ºMicrosoft Install ServiceÌØȨÌáÉýÎó²î

l  CVE-2024-26212£ºDHCP Server Service¾Ü¾ø·þÎñÎó²î

l  CVE-2024-26256£ºlibarchive Ô¶³Ì´úÂëÖ´ÐÐÎó²î

±¾´Î¸üÐÂÖÐÆäËûÖµµÃ¹Ø×¢µÄÎó²î»¹°üÀ¨µ«²»ÏÞÓÚ£º

CVE-2024-26245£ºWindows SMB±£´æÌØȨÌáÉýÎó²î £¬ÀÖ³ÉʹÓøÃÎó²î¿ÉÒÔ»ñµÃSYSTEMȨÏÞ ¡£

CVE-2024-20670£ºOutlook for Windows±£´æÓÕÆ­Îó²î £¬ÍþвÕß¿ÉÏòÊܺ¦Õß·¢ËͶñÒâURL²¢ÓÕµ¼Êܺ¦ÕßÖ´ÐиÃURL £¬Èçͨ¹ý·¢ËÍÌØÖƵĵç×ÓÓʼþ £¬´Ó¶øµ¼ÖÂÊܺ¦ÕßÓëÍþвÕß¿ØÖƵIJ»ÊÜÐÅÍÐλÖý¨ÉèÅþÁ¬ £¬´Ó¶ø½«Êܺ¦ÕßµÄ Net-NTLMv2 ¹þϣ鶵½²»ÊÜÐÅÍеÄÍøÂç £¬È»ºóÍþвÕß¿ÉÒÔ½«ÆäÖм̵½ÁíÒ»¸ö·þÎñ²¢ÒÔÊܺ¦ÕßÉí·Ý¾ÙÐÐÉí·ÝÑéÖ¤ ¡£

Microsoft SharePoint ÁãÈÕÎó²î£¨ÔÝÎÞCVE£©£ºÑо¿Ö°Ô±ÔÚSharePointÖз¢Ã÷ÁËÁ½ÖÖÌÓ±ÜÉø͸¼ì²âµÄÐÂÊÖÒÕ £¬ÔÊÐíÓû§ÈƹýÉó¼ÆÈÕÖ¾ £¬×èÖ¹ÔÚÍâйÎļþʱ´¥·¢ÏÂÔØÊÂÎñ ¡£

΢Èí4Ô¸üÐÂÉæ¼°µÄÍêÕûÎó²îÁбíÈçÏ£º

CVE ID

CVE ÎÊÌâ

ÑÏÖØÐÔ

CVE-2024-29053

Microsoft   Defender for IoT Ô¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

CVE-2024-21323

Microsoft   Defender for IoT Ô¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

CVE-2024-21322

Microsoft   Defender for IoT Ô¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

CVE-2024-21409

.NET¡¢.NET Framework ºÍ Visual Studio Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29993

Azure   CycleCloud ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-29063

Azure AIËÑË÷ÐÅϢй¶Îó²î

¸ßΣ

CVE-2024-28917

Azure   Arc-enabled Kubernetes Extension Cluster-Scope ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-21424

Azure   Compute Gallery ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-26193

Azure   Migrate Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29989

Azure   Monitor Agent ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-2201

Ó¢Ìضû£ºCVE-2024-2201 ·ÖÖ§ÀúÊ·×¢Èë

¸ßΣ

CVE-2024-29988

SmartScreen   Prompt Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-29990

Microsoft   Azure Kubernetes Service Confidential ContainerÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-28905

Microsoft   Brokering File System ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-28907

Microsoft   Brokering File System ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-26213

Microsoft   Brokering File System ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-28904

Microsoft   Brokering File System ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-29055

Microsoft   Defender for IoT ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-29054

Microsoft   Defender for IoT ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-21324

Microsoft   Defender for IoT ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-26158

Microsoft   Install Service ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-26257

Microsoft   Excel Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-20670

Outlook   for Windows ÓÕÆ­Îó²î

¸ßΣ

CVE-2024-26251

Microsoft   SharePoint Server ÓÕÆ­Îó²î

¸ßΣ

CVE-2024-26214

Microsoft   WDAC SQL Server ODBC Çý¶¯³ÌÐòÔ¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26244

Microsoft   WDAC OLE DB Provider for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26210

Microsoft   WDAC OLE DB Provider for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26233

Windows   DNS Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26231

Windows   DNS Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26227

Windows   DNS Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26223

Windows   DNS Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26221

Windows   DNS Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26224

Windows   DNS Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26222

Windows   DNS Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29064

Windows   Hyper-V ¾Ü¾ø·þÎñÎó²î

¸ßΣ

CVE-2024-28937

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28938

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29044

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28935

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28940

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28943

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28941

Microsoft   ODBC Driver for SQL Server  Ô¶³Ì´úÂëÖ´ÐÐÎó²îµÄ

¸ßΣ

CVE-2024-28910

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28944

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28908

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28909

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29985

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28906

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28926

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28933

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²îµÄ

¸ßΣ

CVE-2024-28934

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²îµÄ

¸ßΣ

CVE-2024-28927

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28930

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²îµÄ

¸ßΣ

CVE-2024-29046

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28932

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²îµÄ

¸ßΣ

CVE-2024-29047

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28931

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²îµÄ

¸ßΣ

CVE-2024-29984

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28929

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²îµÄ

¸ßΣ

CVE-2024-28939

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28942

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29043

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²îµÄ

¸ßΣ

CVE-2024-28936

Microsoft   ODBC Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²îµÄ

¸ßΣ

CVE-2024-29045

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28915

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28913

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28945

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29048

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28912

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28914

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29983

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-28911

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29982

Microsoft   OLE DB Driver for SQL Server Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29056

Windows   Authentication ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-21447

Windows   Authentication ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-20665

BitLocker Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-26256

libarchive   Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26228

Windows Cryptographic   Services Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-29050

Windows   Cryptographic Services Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26237

Windows   Defender Credential Guard ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-26212

DHCP   Server Service ¾Ü¾ø·þÎñÎó²î

¸ßΣ

CVE-2024-26215

DHCP   Server Service ¾Ü¾ø·þÎñÎó²î

¸ßΣ

CVE-2024-26195

DHCP   Server Service Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26202

DHCP   Server Service Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29066

Windows ÂþÑÜʽÎļþϵͳ (DFS) Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26226

Windows ÂþÑÜʽÎļþϵͳ (DFS) ÐÅϢй¶Îó²î

¸ßΣ

CVE-2024-26172

Windows   DWM Core Library ÐÅϢй¶Îó²î

¸ßΣ

CVE-2024-26216

Windows   File Server Resource Management Service ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-26219

HTTP.sys ¾Ü¾ø·þÎñÎó²î

¸ßΣ

CVE-2024-26253

Windows   rndismp6.sys Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26252

Windows   rndismp6.sys Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26183

Windows   Kerberos ¾Ü¾ø·þÎñÎó²î

¸ßΣ

CVE-2024-26248

Windows   Kerberos ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-20693

Windows   Kernel ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-26245

Windows   SMB ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-26229

Windows   CSC Service ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-26218

Windows   Kernel ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-26209

Microsoft   Local Security Authority Subsystem Service ÐÅϢй¶Îó²î

¸ßΣ

CVE-2024-26232

Microsoft   Message Queuing (MSMQ) Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26208

Microsoft   Message Queuing (MSMQ) Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26220

Windows   Mobile Hotspot ÐÅϢй¶Îó²î

¸ßΣ

CVE-2024-26234

Proxy   Driver ÓÕÆ­Îó²î

¸ßΣ

CVE-2024-28902

Windows   Remote Access Connection Manager ÐÅϢй¶Îó²î

¸ßΣ

CVE-2024-28900

Windows   Remote Access Connection Manager ÐÅϢй¶Îó²î

¸ßΣ

CVE-2024-28901

Windows   Remote Access Connection Manager ÐÅϢй¶Îó²î

¸ßΣ

CVE-2024-26255

Windows   Remote Access Connection Manager ÐÅϢй¶Îó²î

¸ßΣ

CVE-2024-26230

Windows   Telephony Server ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-26239

Windows   Telephony Server ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-26207

Windows   Remote Access Connection Manager ÐÅϢй¶Îó²î

¸ßΣ

CVE-2024-26217

Windows   Remote Access Connection Manager ÐÅϢй¶Îó²î

¸ßΣ

CVE-2024-26211

Windows   Remote Access Connection Manager ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-20678

Remote   Procedure Call Runtime Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26200

Windows ·ÓɺÍÔ¶³Ì»á¼û·þÎñ (RRAS) Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26179

Windows ·ÓɺÍÔ¶³Ì»á¼û·þÎñ (RRAS) Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-26205

Windows ·ÓɺÍÔ¶³Ì»á¼û·þÎñ (RRAS) Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

CVE-2024-29061

Secure Boot   Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-28921

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-20689

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-26250

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-28922

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-29062

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-20669

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-28898

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-20688

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-23593

Lenovo£ºCVE-2024-23593 Zero Out Boot Manager ²¢½µÖÁ   UEFI Shell

¸ßΣ

CVE-2024-28896

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-28919

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-23594

Lenovo£ºCVE-2024-23594 LenovoBT.efi ÖеĿÍÕ»»º³åÇøÒç³ö

¸ßΣ

CVE-2024-28923

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-28903

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-26189

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-26240

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-28924

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-28897

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-28925

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-26175

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-28920

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-26194

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-26180

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-26171

Secure Boot   Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-26168

Secure   Boot Çå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

CVE-2024-29052

Windows   Storage ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-26242

Windows   Telephony Server ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-26236

Windows   Update Stack ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-26235

Windows   Update Stack ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-26243

Windows   USB Print Driver ȨÏÞÌáÉýÎó²î

¸ßΣ

CVE-2024-26254

Microsoft   Virtual Machine Bus(VMBus) ¾Ü¾ø·þÎñÎó²î

¸ßΣ

CVE-2024-26241

Win32k ÌØȨÌáÉýÎó²î

¸ßΣ

CVE-2024-20685

Azure   Private 5G Core ¾Ü¾ø·þÎñÎó²î

ÖÐΣ

CVE-2024-29992

Azure   Identity Library for .NET ÐÅϢй¶Îó²î

ÖÐΣ

CVE-2024-29049

Microsoft   Edge£¨»ùÓÚ Chromium£©Webview2 ÓÕÆ­Îó²î

ÖÐΣ

CVE-2024-29981

Microsoft   Edge£¨»ùÓÚ Chromium£©ÓÕÆ­Îó²î

µÍΣ

CVE-2024-3156

Chromium£ºCVE-2024-3156 V8 ÖеÄʵÑé²»µ±

δ֪

CVE-2024-3159

Chromium£ºCVE-2024-3159 V8 ÖеÄÄÚ´æ»á¼ûÔ½½ç

δ֪

CVE-2024-3158

Chromium£ºCVE-2024-3158 ÔÚÊéÇ©ÖÐ Use-after-free

δ֪

CVE-2019-3816

δ֪

δ֪

CVE-2019-3833

δ֪

δ֪

 

 

¶þ¡¢Ó°Ïì¹æÄ£

ÊÜÓ°ÏìµÄ²úÆ·/¹¦Ð§/·þÎñ/×é¼þ°üÀ¨£º

Windows BitLocker

Windows Secure Boot

Microsoft Office Outlook

Windows Remote Procedure Call

Azure Private 5G Core

Windows Kernel

Microsoft Defender for IoT

.NET and Visual Studio

Azure Compute Gallery

Windows Authentication Methods

Microsoft Install Service

Windows DWM Core Library

Windows Routing and Remote Access Service (RRAS)

Windows Kerberos

Azure Migrate

Windows DHCP Server

Windows Remote Access Connection Manager

Windows Message Queuing

Windows Local Security Authority Subsystem Service (LSASS)

Microsoft WDAC OLE DB provider for SQL

Microsoft Brokering File System

Microsoft WDAC ODBC Driver

Windows File Server Resource Management Service

Windows HTTP.sys

Windows Mobile Hotspot

Role: DNS Server

Windows Distributed File System (DFS)

Windows Cryptographic Services

Windows Proxy Driver

Windows Update Stack

Windows Defender Credential Guard

Windows Win32K - ICOMP

Windows Telephony Server

Windows USB Print Driver

Microsoft Office SharePoint

Windows Internet Connection Sharing (ICS)

Windows Virtual Machine Bus

Windows Compressed Folder

Microsoft Office Excel

SQL Server

Azure Arc

Microsoft Edge (Chromium-based)

Windows Storage

Azure AI Search

Role: Windows Hyper-V

Internet Shortcut Files

Azure Monitor

Microsoft Azure Kubernetes Service

Azure SDK

Azure

 

Èý¡¢Çå¾²²½·¥

3.1 Éý¼¶°æ±¾

ÏÖÔÚ΢ÈíÒÑÐû²¼Ïà¹ØÇå¾²¸üР£¬½¨ÒéÊÜÓ°ÏìµÄÓû§¾¡¿ìÐÞ¸´ ¡£

£¨Ò»£© Windows Update×Ô¶¯¸üÐÂ

Microsoft UpdateĬÈÏÆôÓà £¬µ±ÏµÍ³¼ì²âµ½¿ÉÓøüÐÂʱ £¬½«»á×Ô¶¯ÏÂÔظüв¢ÔÚÏÂÒ»´ÎÆô¶¯Ê±×°Öà ¡£Ò²¿ÉÑ¡Ôñͨ¹ýÒÔÏ°취ÊÖ¶¯¾ÙÐиüУº

1¡¢µã»÷¡°×îÏȲ˵¥¡±»ò°´Windows¿ì½Ý¼ü £¬µã»÷½øÈë¡°ÉèÖá±

2¡¢Ñ¡Ôñ¡°¸üкÍÇå¾²¡± £¬½øÈë¡°Windows¸üС±£¨Windows 8¡¢Windows 8.1¡¢Windows Server 2012ÒÔ¼°Windows Server 2012 R2¿Éͨ¹ý¿ØÖÆÃæ°å½øÈë¡°Windows¸üС± £¬Ïêϸ°ì·¨Îª¡°¿ØÖÆÃæ°å¡±->¡°ÏµÍ³ºÍÇå¾²¡±->¡°Windows¸üС±£©

3¡¢Ñ¡Ôñ¡°¼ì²é¸üС± £¬ÆÚ´ýϵͳ×Ô¶¯¼ì²é²¢ÏÂÔØ¿ÉÓøüР¡£

4¡¢¸üÐÂÍê³ÉºóÖØÆôÅÌËã»ú £¬¿Éͨ¹ý½øÈë¡°Windows¸üС±->¡°Éó²é¸üÐÂÀúÊ·¼Í¼¡±Éó²éÊÇ·ñÀÖ³É×°ÖÃÁ˸üР¡£¹ØÓÚûÓÐÀÖ³É×°ÖõĸüР£¬¿ÉÒÔµã»÷¸Ã¸üÐÂÃû³Æ½øÈë΢Èí¹Ù·½¸üÐÂÐÎòÁ´½Ó £¬µã»÷×îеÄSSUÃû³Æ²¢ÔÚÐÂÁ´½ÓÖеã»÷¡°Microsoft ¸üÐÂĿ¼¡± £¬È»ºóÔÚÐÂÁ´½ÓÖÐÑ¡ÔñÊÊÓÃÓÚÄ¿µÄϵͳµÄ²¹¶¡¾ÙÐÐÏÂÔز¢×°Öà ¡£

£¨¶þ£© ÊÖ¶¯×°ÖøüÐÂ

Microsoft¹Ù·½ÏÂÔØÏìÓ¦²¹¶¡¾ÙÐиüР¡£

2024Äê4ÔÂÇå¾²¸üÐÂÏÂÔØÁ´½Ó£º

https://msrc.microsoft.com/update-guide/releaseNote/2024-Apr

²¹¶¡ÏÂÔØʾÀý£¨²Î¿¼£©£º

1.·­¿ªÉÏÊöÏÂÔØÁ´½Ó £¬µã»÷Îó²îÁбíÖÐÒªÐÞ¸´µÄCVEÁ´½Ó ¡£

image.png

Àý1£ºÎ¢ÈíÎó²îÁÐ±í£¨Ê¾Àý£©

2.ÔÚ΢Èíͨ¸æÒ³Ãæµ×²¿×ó²à¡¾²úÆ·¡¿Ñ¡ÔñÏìÓ¦µÄϵͳÀàÐÍ £¬µã»÷ÓҲࡾÏÂÔØ¡¿´¦·­¿ª²¹¶¡ÏÂÔØÁ´½Ó ¡£

image.png

Àý2£ºCVE-2022-21989²¹¶¡ÏÂÔØʾÀý

3.µã»÷¡¾Çå¾²¸üС¿ £¬·­¿ª²¹¶¡ÏÂÔØÒ³Ãæ £¬ÏÂÔØÏìÓ¦²¹¶¡²¢¾ÙÐÐ×°Öà ¡£

image.png

Àý3£º²¹¶¡ÏÂÔؽçÃæ

4.×°ÖÃÍê³ÉºóÖØÆôÅÌËã»ú ¡£

3.2 ÔÝʱ²½·¥

ÔÝÎÞ ¡£

3.3 ͨÓý¨Òé

l  °´ÆÚ¸üÐÂϵͳ²¹¶¡ £¬ïÔ̭ϵͳÎó²î £¬ÌáÉý·þÎñÆ÷µÄÇå¾²ÐÔ ¡£

l  ÔöǿϵͳºÍÍøÂçµÄ»á¼û¿ØÖÆ £¬Ð޸ķÀ»ðǽսÂÔ £¬¹Ø±Õ·ÇÐëÒªµÄÓ¦Óö˿ڻò·þÎñ £¬ïÔÌ­½«Î£ÏÕ·þÎñ£¨ÈçSSH¡¢RDPµÈ£©Ì»Â¶µ½¹«Íø £¬ïÔÌ­¹¥»÷Ãæ ¡£

l  ʹÓÃÆóÒµ¼¶Çå¾²²úÆ· £¬ÌáÉýÆóÒµµÄÍøÂçÇå¾²ÐÔÄÜ ¡£

l  ÔöǿϵͳÓû§ºÍȨÏÞÖÎÀí £¬ÆôÓöàÒòËØÈÏÖ¤»úÖƺÍ×îСȨÏÞÔ­Ôò £¬Óû§ºÍÈí¼þȨÏÞÓ¦¼á³ÖÔÚ×îµÍÏÞ¶È ¡£

l  ÆôÓÃÇ¿ÃÜÂëÕ½ÂÔ²¢ÉèÖÃΪ°´ÆÚÐÞ¸Ä ¡£

3.4 ²Î¿¼Á´½Ó

https://msrc.microsoft.com/update-guide/releaseNote/2024-Apr

https://www.bleepingcomputer.com/news/microsoft/microsoft-april-2024-patch-tuesday-fixes-150-security-flaws-67-rces/

https://news.sophos.com/en-us/2024/04/09/smoke-and-screen-mirrors-a-strange-signed-backdoor/

https://www.varonis.com/blog/sidestepping-detection-while-exfiltrating-sharepoint-data

 


ËÄ¡¢°æ±¾ÐÅÏ¢

°æ±¾

ÈÕÆÚ

±¸×¢

V1.0

2024-04-10

Ê×´ÎÐû²¼

 

 

 

Îå¡¢¸½Â¼

5.1 ÓÅ·¢¹ú¼ÊÍøÕ¾¹ÙÍø¼ò½é

ÓÅ·¢¹ú¼ÊÍøÕ¾¹ÙÍø½¨ÉèÓÚ1996Äê £¬ÊÇÓÉÁôÃÀ²©Ê¿ÑÏÍû¼ÑŮʿ½¨ÉèµÄ¡¢ÓµÓÐÍêÈ«×ÔÖ÷֪ʶ²úȨµÄÐÅÏ¢Çå¾²¸ß¿Æ¼¼ÆóÒµ ¡£ÊǺ£ÄÚ×î¾ßʵÁ¦µÄÐÅÏ¢Çå¾²²úÆ·¡¢Çå¾²·þÎñ½â¾ö¼Æ»®µÄÁ캽ÆóÒµÖ®Ò» ¡£

¹«Ë¾×ܲ¿Î»ÓÚ±±¾©ÊÐÖйشåÈí¼þÔ°ÓÅ·¢¹ú¼ÊÍøÕ¾¹ÙÍø´óÏà £¬¹«Ë¾Ô±¹¤6000ÓàÈË £¬Ñз¢ÍŶÓ1200ÓàÈË, ÊÖÒÕ·þÎñÍŶÓ1300ÓàÈË ¡£ÔÚÌìϸ÷Ê¡¡¢ÊС¢×ÔÖÎÇøÉèÁ¢·ÖÖ§»ú¹¹ÁùÊ®¶à¸ö £¬ÓµÓÐÁýÕÖÌìϵÄÏúÊÛϵͳ¡¢ÇþµÀϵͳºÍÊÖÒÕÖ§³Öϵͳ ¡£¹«Ë¾ÓÚ2010Äê6ÔÂ23ÈÕÔÚÉîÛÚÖÐС°å¹ÒÅÆÉÏÊÐ ¡££¨¹ÉƱ´úÂ룺002439£©

¶àÄêÀ´ £¬ÓÅ·¢¹ú¼ÊÍøÕ¾¹ÙÍøÖÂÁ¦ÓÚÌṩ¾ßÓйú¼Ê¾ºÕùÁ¦µÄ×ÔÖ÷Á¢ÒìµÄÇå¾²²úÆ·ºÍ×î¼Ñʵ¼ù·þÎñ £¬×ÊÖú¿Í»§ÖÜÈ«ÌáÉýÆäIT»ù´¡ÉèÊ©µÄÇå¾²ÐÔºÍÉú²úЧÄÜ £¬Îª´òÔìºÍÌáÉý¹ú¼Ê»¯µÄÃñ×åÐÅÏ¢Çå¾²¹¤ÒµÁì¾üÆ·Åƶø²»Ð¸Æð¾¢ ¡£

5.2 ¹ØÓÚÓÅ·¢¹ú¼ÊÍøÕ¾¹ÙÍø

ÓÅ·¢¹ú¼ÊÍøÕ¾¹ÙÍøÇå¾²Ó¦¼±ÏìÓ¦ÖÐÐÄÒÑÐû²¼1000¶à¸öÎó²îͨ¸æºÍΣº¦Ô¤¾¯ £¬ÎÒÃǽ«Ò»Á¬¸ú×ÙÈ«Çò×îеÄÍøÂçÇå¾²ÊÂÎñºÍÎó²î £¬ÎªÆóÒµµÄÐÅÏ¢Çå¾²±£¼Ý»¤º½ ¡£

¹Ø×¢ÎÒÃÇ£º

image.png