| CNNVD-ID编号 | CNNVD-202210-547 |
| CVE编号 | CVE-2022-37977 |
| 发布时间 | 2022-10-11 |
| 更新时间 | 2022-10-12 |
| 漏洞类型 | 其他 |
| 漏洞来源 | bee13oy with Cyber Kunlun Lab |
| 危险等级 | 中危 |
| 威胁类型 | 远程 |
| 厂 商 | N/A |
Microsoft Windows Local Security Authority Subsystem Service是美国微软(Microsoft)公司的一个内部程序,负责运行Windows系统安全政策。它在用户登录时电脑单机或服务器时,验证用户身份,管理用户密码变更,并产生访问字符。它也会在窗口安全日志中留下应有的记录。 Microsoft Windows Local Security Authority Subsystem Service (LSASS)存在安全漏洞。以下产品和版本受到影响:Windows 10 Version 21H2 for x64-based Systems,Windows 11 Version 22H2 for ARM64-based Systems,Windows 11 Version 22H2 for x64-based Systems,Windows 10 for 32-bit Systems,Windows 10 for x64-based Systems,Windows 7 for 32-bit Systems Service Pack 1,Windows 7 for x64-based Systems Service Pack 1,Windows 8.1 for 32-bit systems,Windows 8.1 for x64-based systems,Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows 10 Version 1809 for ARM64-based Systems,Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2008 for x64-based Systems Service Pack 2,Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 20H2 for x64-based Systems,Windows 10 Version 20H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 1607 for 32-bit Systems,Windows 10 Version 1607 for x64-based Systems,Windows Server 2016,Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation),Windows Server 2008 R2 for x64-based Systems Service Pack 1,Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation),Windows Server 2012,Windows Server 2012 (Server Core installation),Windows RT 8.1,Windows Server 2008 for 32-bit Systems Service Pack 2,Windows Server 2012 R2,Windows 10 Version 21H1 for ARM64-based Systems,Windows 10 Version 21H1 for 32-bit Systems,Windows 10 Version 20H2 for ARM64-based Systems,Windows 11 for x64-based Systems,Windows 11 for ARM64-based Systems,Windows Server 2016 (Server Core installation),Windows Server 2012 R2 (Server Core installation),Windows 10 Version 21H1 for x64-based Systems,Windows 10 Version 21H2 for 32-bit Systems。
来源:MISC
链接:https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37977
来源:cxsecurity.com
来源:vigilance.fr
链接:https://vigilance.fr/vulnerability/Windows-vulnerabilities-of-October-2022-39525
暂无