CNNVD通报微软多个安全漏洞
作者: 日期:2023年07月14日 阅:11,540

近日,CNNVD通报微软官方发布的多个安全漏洞,其中微软产品本身漏洞139个,影响到微软产品的其他厂商漏洞0个。包括Microsoft Message Queuing 安全漏洞(CNNVD-202307-933、CVE-2023-32057)、Microsoft Office 安全漏洞(CNNVD-202307-826、CVE-2023-33150)等多个漏洞。成功利用上述漏洞的攻击者可以在目标系统上执行任意代码、获取用户数据,提升权限等。微软多个产品和系统受漏洞影响。目前,微软官方已经发布了漏洞修复补丁,建议用户及时确认是否受到漏洞影响,尽快采取修补措施。

一、 漏洞介绍

2023年7月11日,微软发布了2023年7月份安全更新,共139个漏洞的补丁程序,CNNVD对这些漏洞进行了收录。本次更新主要涵盖了Microsoft Windows 和 Windows 组件、Microsoft Windows App Store、Microsoft Windows PGM、Microsoft Windows DNS、Microsoft Windows Kernel、Microsoft Office等。CNNVD对其危害等级进行了评价,其中超危漏洞5个,高危漏洞82个,中危漏洞51个,低危漏洞1个。微软多个产品和系统版本受漏洞影响,具体影响范围可访问微软官方网站查询:

https://portal.msrc.microsoft.com/zh-cn/security-guidance

二、漏洞详情

此次更新共包括130个新增漏洞的补丁程序,其中超危漏洞5个,高危漏洞74个,中危漏洞50个,低危漏洞1个。

序号漏洞名称CNNVD编号CVE编号危害等级官方链接
1Microsoft  Message Queuing 安全漏洞CNNVD-202307-933CVE-2023-32057超危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32057
2Microsoft  Office 安全漏洞CNNVD-202307-826CVE-2023-33150超危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33150
3Microsoft  Windows Routing and Remote Access Service (RRAS) 安全漏洞CNNVD-202307-815CVE-2023-35365超危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35365
4Microsoft  Windows Routing and Remote Access Service (RRAS) 安全漏洞CNNVD-202307-814CVE-2023-35366超危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35366
5Microsoft  Windows Routing and Remote Access Service (RRAS) 安全漏洞CNNVD-202307-810CVE-2023-35367超危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35367
6Microsoft  Windows Netlogon 安全漏洞CNNVD-202307-920CVE-2023-21526高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21526
7Microsoft  Win32k 安全漏洞CNNVD-202307-821CVE-2023-21756高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21756
8Microsoft  Windows Admin Center 安全漏洞CNNVD-202307-922CVE-2023-29347高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29347
9Microsoft  ODBC Driver 安全漏洞CNNVD-202307-858CVE-2023-32038高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32038
10Microsoft  Message Queuing 安全漏洞CNNVD-202307-871CVE-2023-32044高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32044
11Microsoft  Message Queuing 安全漏洞CNNVD-202307-872CVE-2023-32045高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32045
12Microsoft  Windows MSHTML Platform 安全漏洞CNNVD-202307-874CVE-2023-32046高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32046
13Paint  3D 安全漏洞CNNVD-202307-876CVE-2023-32047高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32047
14Microsoft  Windows SmartScreen 安全漏洞CNNVD-202307-880CVE-2023-32049高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32049
15Microsoft  Windows Installer 安全漏洞CNNVD-202307-884CVE-2023-32050高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32050
16Microsoft  Raw Image Extension 安全漏洞CNNVD-202307-886CVE-2023-32051高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32051
17Microsoft  Windows Installer 安全漏洞CNNVD-202307-929CVE-2023-32053高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32053
18Microsoft  Windows Volume Shadow Copy 安全漏洞CNNVD-202307-932CVE-2023-32054高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32054
19Microsoft  Windows Server Update Service 安全漏洞CNNVD-202307-934CVE-2023-32056高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32056
20Microsoft  HTTP.sys 安全漏洞CNNVD-202307-939CVE-2023-32084高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32084
21Microsoft  Visual Studio和Microsoft .NET 安全漏洞CNNVD-202307-943CVE-2023-33127高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33127
22Microsoft  SharePoint 安全漏洞CNNVD-202307-942CVE-2023-33134高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33134
23Microsoft  Office 安全漏洞CNNVD-202307-822CVE-2023-33148高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33148
24Microsoft  Office 安全漏洞CNNVD-202307-824CVE-2023-33149高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33149
25Microsoft  ActiveX 安全漏洞CNNVD-202307-830CVE-2023-33152高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33152
26Microsoft  Windows Partition Management Driver 安全漏洞CNNVD-202307-945CVE-2023-33154高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33154
27Microsoft  Windows Cloud Files Mini Filter Driver 安全漏洞CNNVD-202307-946CVE-2023-33155高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33155
28Microsoft  SharePoint 安全漏洞CNNVD-202307-941CVE-2023-33157高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33157
29Microsoft  Excel 安全漏洞CNNVD-202307-937CVE-2023-33158高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33158
30Microsoft  SharePoint 安全漏洞CNNVD-202307-935CVE-2023-33159高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33159
31Microsoft  SharePoint 安全漏洞CNNVD-202307-931CVE-2023-33160高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33160
32Microsoft  Excel 安全漏洞CNNVD-202307-926CVE-2023-33161高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33161
33Microsoft  Windows Network Load Balancing 安全漏洞CNNVD-202307-923CVE-2023-33163高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33163
34Microsoft  ASP.NET 和 Visual Studio 安全漏洞CNNVD-202307-919CVE-2023-33170高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170
35Microsoft  Dynamics 365 安全漏洞CNNVD-202307-917CVE-2023-33171高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33171
36Microsoft  Windows PGM 安全漏洞CNNVD-202307-911CVE-2023-35297高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35297
37Microsoft  HTTP.sys 安全漏洞CNNVD-202307-910CVE-2023-35298高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35298
38Microsoft  Windows Common Log File System Driver 安全漏洞CNNVD-202307-909CVE-2023-35299高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35299
39Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-908CVE-2023-35300高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35300
40Microsoft  PostScript Printer Driver 安全漏洞CNNVD-202307-907CVE-2023-35302高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35302
41Microsoft  USB Audio Class System Driver 安全漏洞CNNVD-202307-906CVE-2023-35303高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35303
42Microsoft  Windows Kernel 安全漏洞CNNVD-202307-905CVE-2023-35304高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35304
43Microsoft  Windows Kernel 安全漏洞CNNVD-202307-902CVE-2023-35305高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35305
44Microsoft  Message Queuing 安全漏洞CNNVD-202307-901CVE-2023-35309高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35309
45Microsoft  Outlook 安全漏洞CNNVD-202307-899CVE-2023-35311高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35311
46Microsoft  Windows VOLSNAP.SYS 安全漏洞CNNVD-202307-898CVE-2023-35312高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35312
47Microsoft  Windows Online Certificate Status Protocol (OCSP) SnapIn 安全漏洞CNNVD-202307-888CVE-2023-35313高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35313
48Microsoft  Windows Layer-2 Bridge Network Driver 安全漏洞CNNVD-202307-893CVE-2023-35315高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35315
49Microsoft  Windows Server Update Service 安全漏洞CNNVD-202307-897CVE-2023-35317高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35317
50Microsoft  Windows Connected User Experiences and Telemetry 安全漏洞CNNVD-202307-892CVE-2023-35320高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35320
51Microsoft  Windows Deployment Services 安全漏洞CNNVD-202307-887CVE-2023-35322高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35322
52Microsoft  Windows OLE 安全漏洞CNNVD-202307-885CVE-2023-35323高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35323
53Microsoft  Windows Print Spooler Components 安全漏洞CNNVD-202307-879CVE-2023-35325高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35325
54Microsoft  Windows Transaction Manager 安全漏洞CNNVD-202307-875CVE-2023-35328高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35328
55Microsoft  SPNEGO Extended Negotiation 安全漏洞CNNVD-202307-870CVE-2023-35330高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35330
56Microsoft  Media-Wiki Extensions 安全漏洞CNNVD-202307-865CVE-2023-35333高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35333
57Microsoft  Dynamics 365 安全漏洞CNNVD-202307-864CVE-2023-35335高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35335
58Microsoft  Windows Win32K 安全漏洞CNNVD-202307-859CVE-2023-35337高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35337
59Microsoft  Windows Peer Name Resolution Protocol 安全漏洞CNNVD-202307-857CVE-2023-35338高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35338
60Microsoft  Windows CryptoAPI 安全漏洞CNNVD-202307-855CVE-2023-35339高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35339
61Microsoft  Windows CNG Key Isolation Service 安全漏洞CNNVD-202307-852CVE-2023-35340高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35340
62Microsoft  Windows Image Acquisition 安全漏洞CNNVD-202307-849CVE-2023-35342高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35342
63Microsoft  Windows Geolocation Service 安全漏洞CNNVD-202307-846CVE-2023-35343高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35343
64Microsoft  Windows App Store 安全漏洞CNNVD-202307-839CVE-2023-35347高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35347
65Microsoft  Azure Active Directory Connect 安全漏洞CNNVD-202307-838CVE-2023-35348高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35348
66Microsoft  Windows Active Directory 安全漏洞CNNVD-202307-835CVE-2023-35350高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35350
67Microsoft  Windows Remote Desktop 安全漏洞CNNVD-202307-831CVE-2023-35352高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35352
68Microsoft  Windows Connected User Experiences and Telemetry 安全漏洞CNNVD-202307-829CVE-2023-35353高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35353
69Microsoft  Windows Kernel 安全漏洞CNNVD-202307-827CVE-2023-35356高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35356
70Microsoft  Windows Kernel 安全漏洞CNNVD-202307-825CVE-2023-35357高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35357
71Microsoft  Windows Kernel 安全漏洞CNNVD-202307-823CVE-2023-35358高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35358
72Microsoft  Windows Kernel 安全漏洞CNNVD-202307-820CVE-2023-35360高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35360
73Microsoft  Windows Kernel 安全漏洞CNNVD-202307-819CVE-2023-35361高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35361
74Microsoft  Windows Clip Service 安全漏洞CNNVD-202307-818CVE-2023-35362高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35362
75Microsoft  Windows Kernel 安全漏洞CNNVD-202307-817CVE-2023-35363高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35363
76Microsoft  Windows Kernel 安全漏洞CNNVD-202307-816CVE-2023-35364高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35364
77Microsoft  Paint 3D 安全漏洞CNNVD-202307-811CVE-2023-35374高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35374
78Microsoft  Visual Studio Code 安全漏洞CNNVD-202307-806CVE-2023-36867高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36867
79Microsoft  Windows Error Reporting 安全漏洞CNNVD-202307-800CVE-2023-36874高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36874
80Microsoft  Windows Cluster Server 安全漏洞CNNVD-202307-850CVE-2023-32033中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32033
81Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-854CVE-2023-32034中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32034
82Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-853CVE-2023-32035中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32035
83Microsoft  Windows Layer-2 Bridge Network Driver 安全漏洞CNNVD-202307-856CVE-2023-32037中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32037
84Microsoft  PostScript Printer Driver 安全漏洞CNNVD-202307-860CVE-2023-32039中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32039
85Microsoft  PostScript Printer Driver 安全漏洞CNNVD-202307-861CVE-2023-32040中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32040
86Microsoft  Windows Update Orchestrator Service 安全漏洞CNNVD-202307-863CVE-2023-32041中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32041
87Microsoft  Windows OLE 安全漏洞CNNVD-202307-866CVE-2023-32042中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32042
88Microsoft  Windows Remote Desktop 安全漏洞CNNVD-202307-868CVE-2023-32043中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32043
89Microsoft  Power Apps 安全漏洞CNNVD-202307-925CVE-2023-32052中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32052
90Microsoft  Windows Active Template Library 安全漏洞CNNVD-202307-928CVE-2023-32055中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32055
91Microsoft  Windows Failover Cluster 安全漏洞CNNVD-202307-936CVE-2023-32083中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32083
92Microsoft  PostScript Printer Driver 安全漏洞CNNVD-202307-940CVE-2023-32085中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32085
93Microsoft  Outlook 安全漏洞CNNVD-202307-828CVE-2023-33151中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33151
94Microsoft  Outlook 安全漏洞CNNVD-202307-832CVE-2023-33153中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33153
95Microsoft  Defender 安全漏洞CNNVD-202307-944CVE-2023-33156中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33156
96Microsoft  Excel 安全漏洞CNNVD-202307-927CVE-2023-33162中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33162
97Microsoft  Windows Remote Procedure Call 安全漏洞CNNVD-202307-921CVE-2023-33164中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33164
98Microsoft  SharePoint 安全漏洞CNNVD-202307-834CVE-2023-33165中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33165
99Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-836CVE-2023-33166中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33166
100Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-837CVE-2023-33167中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33167
101Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-840CVE-2023-33168中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33168
102Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-843CVE-2023-33169中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33169
103Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-844CVE-2023-33172中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33172
104Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-847CVE-2023-33173中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33173
105Microsoft  Windows Cryptographic Services 安全漏洞CNNVD-202307-848CVE-2023-33174中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33174
106Microsoft  PostScript Printer Driver 安全漏洞CNNVD-202307-912CVE-2023-35296中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35296
107Microsoft  PostScript Printer Driver 安全漏洞CNNVD-202307-903CVE-2023-35306中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35306
108Microsoft  Windows MSHTML Platform 安全漏洞CNNVD-202307-904CVE-2023-35308中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35308
109Microsoft  Windows DNS 安全漏洞CNNVD-202307-900CVE-2023-35310中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35310
110Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-891CVE-2023-35314中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35314
111Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-895CVE-2023-35316中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35316
112Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-896CVE-2023-35318中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35318
113Microsoft  Windows Remote Procedure Call Runtime 安全漏洞CNNVD-202307-894CVE-2023-35319中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35319
114Microsoft  Windows Deployment Services 安全漏洞CNNVD-202307-890CVE-2023-35321中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35321
115Microsoft  PostScript Printer Driver 安全漏洞CNNVD-202307-882CVE-2023-35324中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35324
116Microsoft  Windows CDP User Components 安全漏洞CNNVD-202307-878CVE-2023-35326中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35326
117Microsoft  Windows Authentication Methods 安全漏洞CNNVD-202307-873CVE-2023-35329中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35329
118Microsoft  Windows Local Security Authority (LSA) 安全漏洞CNNVD-202307-869CVE-2023-35331中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35331
119Microsoft  Windows Remote Desktop Protocol 安全漏洞CNNVD-202307-867CVE-2023-35332中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35332
120Microsoft  Windows MSHTML Platform 安全漏洞CNNVD-202307-862CVE-2023-35336中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35336
121Microsoft  Windows Media Foundation 安全漏洞CNNVD-202307-851CVE-2023-35341中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35341
122Microsoft  Windows DNS 安全漏洞CNNVD-202307-845CVE-2023-35344中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35344
123Microsoft  Windows DNS 安全漏洞CNNVD-202307-842CVE-2023-35345中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35345
124Microsoft  Windows DNS 安全漏洞CNNVD-202307-841CVE-2023-35346中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35346
125Microsoft  Windows Active Directory 安全漏洞CNNVD-202307-833CVE-2023-35351中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35351
126Microsoft  Windows Authenticode 安全漏洞CNNVD-202307-809CVE-2023-35373中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35373
127Microsoft  Service Fabric 安全漏洞CNNVD-202307-805CVE-2023-36868中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36868
128Microsoft  Azure Active Directory Connect 安全漏洞CNNVD-202307-803CVE-2023-36871中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36871
129Microsoft  Windows Codecs Library 安全漏洞CNNVD-202307-802CVE-2023-36872中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36872
130Microsoft  Office 安全漏洞CNNVD-202307-797CVE-2023-36884低危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36884

此次更新共包括9个更新漏洞的补丁程序,其中高危漏洞8个,中危漏洞1个。

序号漏洞名称CNNVD编号CVE编号危害等级官方链接
1Microsoft  Windows Kerberos 安全漏洞CNNVD-202211-2288CVE-2022-37967高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37967
2Microsoft  Windows Netlogon 安全漏洞CNNVD-202211-2274CVE-2022-38023高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38023
3Microsoft  ODBC Driver 安全漏洞CNNVD-202306-1261CVE-2023-29349高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29349
4Microsoft  ODBC Driver 安全漏洞CNNVD-202306-1252CVE-2023-29356高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29356
5Microsoft  ODBC Driver 安全漏洞CNNVD-202306-1254CVE-2023-32025高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32025
6Microsoft  ODBC Driver 安全漏洞CNNVD-202306-1256CVE-2023-32026高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32026
7Microsoft  ODBC Driver 安全漏洞CNNVD-202306-1258CVE-2023-32027高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32027
8Microsoft  OLE Automation Remote code 安全漏洞CNNVD-202306-1260CVE-2023-32028高危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028
9Microsoft  Windows Secure Boot 安全漏洞CNNVD-202305-767CVE-2023-24932中危https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24932

三、修复建议

目前,微软官方已经发布补丁修复了上述漏洞,建议用户及时确认漏洞影响,尽快采取修补措施。微软官方补丁下载地址:  

https://msrc.microsoft.com/update-guide/en-us

CNNVD将继续跟踪上述漏洞的相关情况,及时发布相关信息。如有需要,可与CNNVD联系。

联系方式:cnnvdvul@itsec.gov.cn

(来源:CNNVD)

关键词:

申明:本文系厂商投稿收录,所涉观点不代表安全牛立场!


相关文章