[BESAdmin-Announcements] Content Modification: Updates for Kev Content published 2024-07-11
Announcements for BES Administrators
besadmin-announcements at bigmail.bigfix.com
Thu Jul 11 09:05:42 PDT 2024
Total New Fixlets: 9
Total Updated Fixlets: 203
Total Fixlets in Site: 2445
Total CVEs Covered: 714
Release Date: 2024-07-11
New Fixlets:
31170 Microsoft Windows Hyper-V Privilege Escalation Vulnerability -
Windows 11
31140 Microsoft Windows Hyper-V Privilege Escalation Vulnerability -
Windows Server 2022
31110 Microsoft Windows MSHTML Platform Spoofing Vulnerability -
Windows Server 2019
31180 Microsoft Windows MSHTML Platform Spoofing Vulnerability -
Windows 11
31150 Microsoft Windows MSHTML Platform Spoofing Vulnerability -
Windows Server 2022
31120 Microsoft Windows MSHTML Platform Spoofing Vulnerability -
Windows 10
31160 Microsoft Windows MSHTML Platform Spoofing Vulnerability -
Windows Server 2008
31130 Microsoft Windows MSHTML Platform Spoofing Vulnerability -
Windows Server 2008 SP2
31100 Microsoft Windows MSHTML Platform Spoofing Vulnerability -
Windows Server 2016
Updated Fixlets:
23040 Microsoft Edge Memory Corruption Vulnerability - Windows
Server 2016
9220 Microsoft SMBv1 Server Remote Code Execution Vulnerability -
Windows Server 2012 R2
16390 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Windows
23050 Microsoft Edge Memory Corruption Vulnerability - Windows
Server 2016
15890 Mozilla Firefox Information Disclosure Vulnerability - Any
Version of Windows
3090 Microsoft Windows Privilege Escalation Vulnerability - Windows
7 SP1
4630 Microsoft SMBv1 Server Remote Code Execution Vulnerability -
Windows Server 2008 SP2
11800 Microsoft SMBv1 Server Remote Code Execution Vulnerability -
Windows Server 2008 R2 SP1
21530 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2019
10780 Microsoft Windows Privilege Escalation Vulnerability - Windows
Server 2012
17950 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Linux
13350 Microsoft Windows Kernel Stack-Based Buffer Overflow
Vulnerability - Windows 7
15410 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Windows
23090 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2010
30770 Microsoft SharePoint Server Privilege Escalation Vulnerability
- SharePoint
22070 Microsoft Windows Common Log File System (CLFS) Driver
Privilege Escalation Vulnerability - Windows Server 2022
23100 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2016
30780 Microsoft .NET Framework, SharePoint, and Visual Studio Remote
Code Execution Vulnerability - SharePoint
1600 Microsoft SMBv1 Server Remote Code Execution Vulnerability -
Windows 8.1
29760 Microsoft Windows Print Spooler Privilege Escalation
Vulnerability - Windows Server 2022
6210 Microsoft Windows Privilege Escalation Vulnerability - Windows
10
8770 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2012 R2
30790 Microsoft SharePoint Remote Code Execution Vulnerability -
SharePoint
8270 Microsoft Windows Privilege Escalation Vulnerability - Windows
Server 2016
23120 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2019
14930 WhatsApp Cross-Site Scripting Vulnerability - Any Version of
MacOS
20050 Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability -
Any Version of MacOS
13400 Microsoft Windows Common Log File System (CLFS) Driver
Privilege Escalation Vulnerability - Windows Server 2022
30810 Microsoft Word Remote Code Execution Vulnerability -
SharePoint
29790 GitLab Community and Enterprise Editions Improper Access
Control Vulnerability - Any Version of Linux
11360 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2008 R2 SP1
13410 Microsoft Windows Client Server Runtime Subsystem (CSRSS)
Privilege Escalation Vulnerability - Windows Server 2022
10340 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2012
12390 Microsoft Netlogon Privilege Escalation Vulnerability -
Windows Server 2008 R2 SP1
9830 Microsoft Netlogon Privilege Escalation Vulnerability - Windows
Server 2012 R2
23140 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2013
15980 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Windows
13420 Microsoft Defender SmartScreen Security Feature Bypass
Vulnerability - Windows Server 2022
14450 Plex Media Server Remote Code Execution Vulnerability - Any
Version of Windows
3700 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Vista SP2
21620 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2013
13430 Microsoft Windows Graphic Component Privilege Escalation
Vulnerability - Windows Server 2022
2680 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows 7 SP1
10360 Microsoft Windows Print Spooler Remote Code Execution
Vulnerability - Windows Server 2012
30330 Microsoft Windows Error Reporting Service Improper Privilege
Management Vulnerability - Windows Server 2022
29820 Microsoft SmartScreen Prompt Security Feature Bypass
Vulnerability - Windows Server 2022
30840 Microsoft Office Remote Code Execution Vulnerability -
SharePoint
13440 Microsoft Windows Advanced Local Procedure Call (ALPC)
Privilege Escalation Vulnerability - Windows Server 2022
30850 Microsoft SharePoint Server Code Injection Vulnerability -
SharePoint
25220 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2016
17030 Adobe Reader and Acrobat Arbitrary Integer Overflow
Vulnerability - Any Version of Windows
4230 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2008 SP2
5770 Microsoft Windows Print Spooler Remote Code Execution
Vulnerability - Windows 10
13450 Microsoft Windows User Profile Service Privilege Escalation
Vulnerability - Windows Server 2022
5260 Microsoft Win32k Privilege Escalation Vulnerability - Windows
Server 2008 SP2
2700 Microsoft Windows Print Spooler Remote Code Execution
Vulnerability - Windows 7 SP1
25230 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2016
27280 Microsoft Streaming Service Proxy Privilege Escalation
Vulnerability - Windows Server 2022
13460 Microsoft Windows LSA Spoofing Vulnerability - Windows Server
2022
26260 Microsoft Windows Defender SmartScreen Security Feature Bypass
Vulnerability - Windows Server 2022
15510 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Windows
20120 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of MacOS
25240 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2019
27290 Microsoft Windows CNG Key Isolation Service Privilege
Escalation Vulnerability - Windows Server 2022
1180 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows 8.1
8860 Microsoft Windows CSRSS Security Feature Bypass Vulnerability -
Windows Server 2012 R2
13470 Microsoft Win32k Privilege Escalation Vulnerability - Windows
Server 2022
26270 Microsoft Windows MSHTML Platform Privilege Escalation
Vulnerability - Windows Server 2022
12450 Microsoft Win32k Privilege Escalation Vulnerability - Windows
Server 2008 R2 SP1
25250 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2019
13480 Microsoft Active Directory Domain Services Privilege
Escalation Vulnerability - Windows Server 2022
26280 Microsoft Windows Error Reporting Service Privilege Escalation
Vulnerability - Windows Server 2022
20650 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
MacOS
25260 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2013
22190 Microsoft Internet Explorer Use-After-Free Vulnerability -
Windows 8 Gold
13490 Microsoft Windows CNG Key Isolation Service Privilege
Escalation Vulnerability - Windows Server 2022
25270 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2013
13500 Microsoft Windows Runtime Remote Code Execution Vulnerability
- Windows Server 2022
13510 Microsoft Windows Print Spooler Privilege Escalation
Vulnerability - Windows Server 2022
28870 Microsoft Windows SmartScreen Security Feature Bypass
Vulnerability - Windows Server 2022
19660 Mozilla Firefox Security Feature Bypass Vulnerability - Any
Version of MacOS
13520 Microsoft Active Directory Domain Services Privilege
Escalation Vulnerability - Windows Server 2022
28880 Microsoft Windows Internet Shortcut Files Security Feature
Bypass Vulnerability - Windows Server 2022
5330 Microsoft Internet Explorer Use-After-Free Vulnerability -
Windows Server 2008 SP2
13530 Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code
Execution Vulnerability - Windows Server 2022
5340 Microsoft Windows Kernel Privilege Escalation Vulnerability -
Windows Server 2008 SP2
7900 Microsoft Windows Print Spooler Remote Code Execution
Vulnerability - Windows Server 2016
20190 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of MacOS
29920 Microsoft Windows MSHTML Platform Security Feature Bypass
Vulnerability - Windows Server 2022
22240 Microsoft Win32k Privilege Escalation Vulnerability - Windows
8 Gold
13540 Microsoft Windows Installer Privilege Escalation Vulnerability
- Windows Server 2022
18150 Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability -
Any Version of Linux
12520 Microsoft Internet Explorer Use-After-Free Vulnerability -
Windows Server 2008 R2 SP1
1260 Microsoft Windows CSRSS Security Feature Bypass Vulnerability -
Windows 8.1
3820 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Vista SP2
13550 Microsoft Windows Scripting Languages Remote Code Execution
Vulnerability - Windows Server 2022
12530 Microsoft Windows Kernel Privilege Escalation Vulnerability -
Windows Server 2008 R2 SP1
17650 Mozilla Firefox Security Feature Bypass Vulnerability - Any
Version of Linux
13560 Microsoft Win32k Privilege Escalation Vulnerability - Windows
Server 2022
28920 Sudo Heap-Based Buffer Overflow Vulnerability - RHEL
26880 Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
- Any Version of Windows
24320 Microsoft Word Remote Code Execution Vulnerability - Office
13570 Microsoft Windows Common Log File System (CLFS) Driver
Privilege Escalation Vulnerability - Windows Server 2022
25350 Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free
Vulnerability - Any Version of Windows
27910 Microsoft Windows Desktop Window Manager (DWM) Core Library
Privilege Escalation Vulnerability - Windows Server 2022
13580 Microsoft Windows Print Spooler Privilege Escalation
Vulnerability - Windows Server 2022
20750 Adobe Reader and Acrobat Arbitrary Integer Overflow
Vulnerability - Any Version of MacOS
2830 Microsoft SMBv1 Server Remote Code Execution Vulnerability -
Windows 7 SP1
10510 Microsoft SMBv1 Server Remote Code Execution Vulnerability -
Windows Server 2012
15120 Microsoft Windows SmartScreen Security Feature Bypass
Vulnerability - Windows Server 2022
19730 Mozilla Firefox and Thunderbird Denial-of-Service
Vulnerability - Any Version of MacOS
27920 Microsoft Windows Mark of the Web (MOTW) Security Feature
Bypass Vulnerability - Windows Server 2022
29460 Microsoft Streaming Service Untrusted Pointer Dereference
Vulnerability - Windows Server 2022
22800 MinIO Information Disclosure Vulnerability - Any Version of
Linux
13590 Microsoft Windows Win32k Privilege Escalation Vulnerability -
Windows Server 2022
4890 Microsoft Windows Privilege Escalation Vulnerability - Windows
Server 2008 SP2
27930 Microsoft Windows SmartScreen Security Feature Bypass
Vulnerability - Windows Server 2022
13600 Microsoft Windows Print Spooler Privilege Escalation
Vulnerability - Windows Server 2022
27940 Microsoft Windows Cloud Files Mini Filter Driver Privilege
Escalation Vulnerability - Windows Server 2022
9510 Microsoft Windows Privilege Escalation Vulnerability - Windows
Server 2012 R2
5930 Microsoft SMBv1 Server Remote Code Execution Vulnerability -
Windows 10
13610 Microsoft Win32k Privilege Escalation Vulnerability - Windows
Server 2022
7470 Microsoft Netlogon Privilege Escalation Vulnerability - Windows
Server 2019
12080 Microsoft Windows Privilege Escalation Vulnerability - Windows
Server 2008 R2 SP1
27440 Microsoft WordPad Information Disclosure Vulnerability -
Windows Server 2022
26930 Google Chromium libvpx Heap Buffer Overflow Vulnerability -
Any Version of Windows
13620 Microsoft Windows COM+ Event System Service Privilege
Escalation Vulnerability - Windows Server 2022
18230 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Linux
25400 Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free
Vulnerability - Any Version of Linux
6970 Microsoft Windows Print Spooler Remote Code Execution
Vulnerability - Windows Server 2019
13630 Microsoft Active Directory Domain Services Privilege
Escalation Vulnerability - Windows Server 2022
19780 Mozilla Firefox Information Disclosure Vulnerability - Any
Version of MacOS
17220 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Linux
26950 MinIO Security Feature Bypass Vulnerability - Any Version of
Linux
16200 Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability -
Any Version of Windows
13640 Microsoft Windows Common Log File System (CLFS) Driver
Privilege Escalation Vulnerability - Windows Server 2022
17740 Mozilla Firefox and Thunderbird Denial-of-Service
Vulnerability - Any Version of Linux
29520 Microsoft Windows Kernel Exposed IOCTL with Insufficient
Access Control Vulnerability - Windows Server 2022
26960 Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
- Any Version of Linux
11090 Microsoft Netlogon Privilege Escalation Vulnerability -
Windows Server 2012
13650 Microsoft Windows User Profile Service Privilege Escalation
Vulnerability - Windows Server 2022
10070 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2012
17750 GitLab Community and Enterprise Editions Remote Code Execution
Vulnerability - Any Version of Linux
1880 Microsoft Windows Privilege Escalation Vulnerability - Windows
8.1
9050 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2012 R2
3930 Microsoft Win32k Privilege Escalation Vulnerability - Windows
Vista SP2
8540 Microsoft Netlogon Privilege Escalation Vulnerability - Windows
Server 2016
13660 Microsoft Windows CLFS Driver Privilege Escalation
Vulnerability - Windows Server 2022
14180 Microsoft Defender Remote Code Execution Vulnerability - Any
Version of Windows
3430 Microsoft Win32k Privilege Escalation Vulnerability - Windows 7
SP1
13670 Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code
Execution Vulnerability - Windows Server 2022
8040 Microsoft SMBv1 Server Remote Code Execution Vulnerability -
Windows Server 2016
25450 Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free
Vulnerability - Any Version of MacOS
11630 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2008 R2 SP1
9070 Microsoft Windows Print Spooler Remote Code Execution
Vulnerability - Windows Server 2012 R2
13680 Microsoft MSHTML Remote Code Execution Vulnerability - Windows
Server 2022
26990 Google Chromium libvpx Heap Buffer Overflow Vulnerability -
Any Version of Linux
5490 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows 10
22900 MinIO Information Disclosure Vulnerability - Any Version of
MacOS
4470 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2008 SP2
27000 MinIO Security Feature Bypass Vulnerability - Any Version of
MacOS
13690 Microsoft Windows Mark of the Web (MOTW) Security Feature
Bypass Vulnerability - Windows Server 2022
22400 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows 8 Gold
14210 Microsoft Malware Protection Engine Improper Restriction of
Operations Vulnerability - Any Version of Windows
11650 Microsoft Windows Print Spooler Remote Code Execution
Vulnerability - Windows Server 2008 R2 SP1
13700 Microsoft Windows Mark of the Web (MOTW) Security Feature
Bypass Vulnerability - Windows Server 2022
15750 Mozilla Firefox Security Feature Bypass Vulnerability - Any
Version of Windows
2440 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows 7 SP1
19340 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of MacOS
16270 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Windows
11150 Microsoft Win32k Privilege Escalation Vulnerability - Windows
Server 2012
19860 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of MacOS
4500 Microsoft Windows Print Spooler Remote Code Execution
Vulnerability - Windows Server 2008 SP2
14230 Citrix Workspace Application and Receiver for Windows Remote
Code Execution Vulnerability - Any Version of Windows
24980 Microsoft Word Remote Code Execution Vulnerability - Word
Viewer
13720 Microsoft Windows Kernel Stack-Based Buffer Overflow
Vulnerability - Windows Vista
22940 Microsoft Edge Memory Corruption Vulnerability - Windows 10
17310 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Linux
27040 Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
- Any Version of MacOS
3490 Microsoft Internet Explorer Use-After-Free Vulnerability -
Windows 7 SP1
18340 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Linux
22950 Microsoft Edge Memory Corruption Vulnerability - Windows 10
10150 Microsoft Windows CSRSS Security Feature Bypass Vulnerability
- Windows Server 2012
30120 Microsoft DWM Core Library Privilege Escalation Vulnerability
- Windows Server 2022
1450 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows 8.1
4010 Microsoft SMBv1 Server Remote Code Execution Vulnerability -
Windows Vista SP2
13740 Microsoft Windows Kernel Stack-Based Buffer Overflow
Vulnerability - Windows Server 2008
5550 Microsoft Windows CSRSS Security Feature Bypass Vulnerability -
Windows 10
3510 Microsoft Windows Kernel Privilege Escalation Vulnerability -
Windows 7 SP1
17850 Mozilla Firefox Information Disclosure Vulnerability - Any
Version of Linux
1470 Microsoft Windows Print Spooler Remote Code Execution
Vulnerability - Windows 8.1
4030 Microsoft Internet Explorer Use-After-Free Vulnerability -
Windows Vista SP2
21440 Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2016
13760 Microsoft Windows Kernel Stack-Based Buffer Overflow
Vulnerability - Windows Server 2008 R2
29630 Android Pixel Information Disclosure Vulnerability - Android
with Major Version & Service Pack
27080 Google Chromium libvpx Heap Buffer Overflow Vulnerability -
Any Version of MacOS
15820 Mozilla Firefox and Thunderbird Denial-of-Service
Vulnerability - Any Version of Windows
11220 Microsoft Internet Explorer Use-After-Free Vulnerability -
Windows Server 2012
18910 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Linux
4070 Microsoft Windows Kernel Privilege Escalation Vulnerability -
Windows Vista SP2
16890 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Windows
26610 Microsoft Windows Search Remote Code Execution Vulnerability -
Windows Server 2022
19450 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
MacOS
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20240711/ddfb7598/attachment.html>
More information about the Besadmin-announcements
mailing list