正文

Microsoft Windows Common Log File System Driver 权限许可和访问控制问题漏洞

admin
admin V管理员 /0 评论 /8 阅读
0414
此篇文章发布距今已超过1118天,您需要注意文章的内容或图片是否可用!

漏洞信息详情

Microsoft Windows Common Log File System Driver 权限许可和访问控制问题漏洞

  • CNNVD编号:CNNVD-202204-3200
    • <!--
  • 危害等级: 高危-->
  • 危害等级: 高危
  • CVE编号: CVE-2022-24481
  • 漏洞类型: 权限许可和访问控制问题
  • 发布时间: 2022-04-12
  • 威胁类型:
  • 更新时间: 2022-04-13
  • 厂        商:
  • 漏洞来源: with DBAPPSecurity Threat Intelligence Center');">Jinquan with D...

漏洞简介

Microsoft Windows Common Log File System Driver是美国微软(Microsoft)公司的通用日志文件系统 (CLFS) API 提供了一个高性能、通用的日志文件子系统,专用客户端应用程序可以使用该子系统并且多个客户端可以共享以优化日志访问。

Microsoft Windows Common Log File System Driver存在权限许可和访问控制问题漏洞。以下产品和版本受到影响:Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows 10 Version 1809 for ARM64-based Systems,Windows Server 2019,Windows Server 2019 (Server Core installation),Windows 10 Version 1909 for 32-bit Systems,Windows 10 Version 1909 for x64-based Systems,Windows 10 Version 1909 for ARM64-based Systems,Windows 10 Version 21H1 for x64-based Systems,Windows 10 Version 21H1 for ARM64-based Systems,Windows 10 Version 21H1 for 32-bit Systems,Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 20H2 for x64-based Systems,Windows 10 Version 20H2 for 32-bit Systems,Windows 10 Version 20H2 for ARM64-based Systems,Windows Server, version 20H2 (Server Core Installation),Windows 11 for x64-based Systems,Windows 11 for ARM64-based Systems,Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 21H2 for x64-based Systems,Windows 10 for 32-bit Systems,Windows 10 for x64-based Systems,Windows 10 Version 1607 for 32-bit Systems,Windows 10 Version 1607 for x64-based Systems,Windows Server 2012 R2 (Server Core installation),Windows Server 2016,Windows Server 2016 (Server Core installation),Windows 7 for 32-bit Systems Service Pack 1,Windows 7 for x64-based Systems Service Pack 1,Windows 8.1 for 32-bit systems,Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation),Windows Server 2008 R2 for x64-based Systems Service Pack 1,Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation),Windows Server 2012,Windows Server 2012 (Server Core installation),Windows Server 2012 R2,Windows 8.1 for x64-based systems,Windows RT 8.1,Windows Server 2008 for 32-bit Systems Service Pack 2,Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation),Windows Server 2008 for x64-based Systems Service Pack 2

漏洞公告

目前厂商已发布升级补丁以修复漏洞,补丁获取链接:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24481

参考网址

来源:www.cybersecurity-help.cz

链接:https://www.cybersecurity-help.cz/vdb/SB2022041250

来源:vigilance.fr

链接:https://vigilance.fr/vulnerability/Windows-vulnerabilities-of-April-2022-38043

来源:msrc.microsoft.com

链接:https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24481

受影响实体

    暂无


补丁

  • Microsoft Windows Common Log File System Driver 权限许可和访问控制问题漏洞的修复措施
    <!--
    2022-4-12
    -->