¡¾·ì϶¹«¸æ¡¿Î¢Èí8Ô¶à¸ö°²È«·ì϶

°ä²¼¹¦·ò 2024-08-14


Ò»¡¢·ì϶¸ÅÊö

2024Äê8ÔÂ14ÈÕ£¬GA»Æ½ð¼×¼¯ÍÅVSRC¼à²âµ½Î¢Èí°ä²¼ÁË8Ô°²È«¸üУ¬±¾´Î¸üй²½¨¸´ÁË89¸ö·ì϶£¨²»Ô̺¬±¾ÔÂÔçЩʱ³½Åû¶µÄ Microsoft Edge ·ì϶£©£¬·ì϶ÀàÐÍÔ̺¬ÌØȨÌáÉý·ì϶¡¢°²È«Ö°ÄÜÈƹý·ì϶¡¢Ô¶³Ì´úÂëÖ´Ðзì϶¡¢ÐÅϢй¶·ì϶¡¢»Ø¾ø·þÎñ·ì϶ºÍºýŪ·ì϶µÈ¡£

±¾´Î°²È«¸üÐÂÖÐÔ̺¬10¸ö0 day·ì϶£¬ÆäÖÐ6¸ö±»»ý¼«ÀûÓã¬4¸öÒѾ­¹«¿ªÅû¶£º

CVE-2024-38178£ºScripting EngineÄÚ´æ°Ü»µ·ì϶

Windows¾ç±¾ÒýÇæÖдæÔÚÀàÐÍ»ìºÏ·ì϶£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ7.5£¬¿Éͨ¹ýÓÕµ¼Ö¸±êÓû§µã»÷ÌØÔìURLÀ´ÀûÓø÷ì϶£¨¸Ã¶ñÒâÁ´½ÓÐèÔÚInternet Explorer ģʽÏ嵀 Microsoft EdgeÖд¥·¢£©£¬³É¹¦ÀûÓÿÉÄܵ¼ÖÂÔ¶³Ì´úÂëÖ´ÐУ¬Ä¿Ç°¸Ã·ì϶ÒѼì²âµ½·ì϶ÀûÓá£

CVE-2024-38193£ºWindows Ancillary Function Driver for WinSockÌØȨÌáÉý·ì϶

Windows Ancillary Function Driver for WinSockÖдæÔÚUse-After-Free·ì϶£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ7.8£¬³É¹¦ÀûÓø÷ì϶¿É½«È¨ÏÞÌáÉýΪSYSTEM ȨÏÞ£¬Ä¿Ç°¸Ã·ì϶ÒѼì²âµ½·ì϶ÀûÓá£

CVE-2024-38213£ºWindows Mark of the Web °²È«Ö°ÄÜÈƹý·ì϶

Windows Mark of the Web ÖдæÔÚ°²È«Ö°ÄÜÈƹý·ì϶£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ6.5£¬ÍþвÕß¿Éͨ¹ýÏòÖ¸±êÓû§·¢ËͶñÒâÎļþ²¢ÓÕʹÓû§´ò¿ªÀ´ÀûÓø÷ì϶£¬³É¹¦ÀûÓÿÉÄܵ¼ÖÂÈƹýSmartScreenÍþв·À»¤£¬Ä¿Ç°¸Ã·ì϶ÒѼì²âµ½·ì϶ÀûÓá£

CVE-2024-38106£ºWindows KernelÌØȨÌáÉý·ì϶

WindowsÄں˴æÔÚȨÏÞÌáÉý·ì϶£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ7.0£¬³É¹¦ÀûÓø÷ì϶Äܹ»»ñµÃSYSTEM ȨÏÞ£¬µ«±ØÒªÓ®µÃ¾ºÕùÇ°ÌᣬĿǰ¸Ã·ì϶ÒѼì²âµ½·ì϶ÀûÓá£

CVE-2024-38107£ºWindows Power Dependency Coordinator ÌØȨÌáÉý·ì϶

Windows µçÔ´ÒÀÀµÐÔЭµ÷Æ÷ÖдæÔÚUse-After-Free·ì϶£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ7.8£¬³É¹¦ÀûÓø÷ì϶¿É½«È¨ÏÞÌáÉýΪSYSTEM ȨÏÞ£¬Ä¿Ç°¸Ã·ì϶ÒѼì²âµ½·ì϶ÀûÓá£

CVE-2024-38189£ºMicrosoft Project Ô¶³Ì´úÂëÖ´Ðзì϶

Microsoft ProjectÖдæÔÚÊäÈëÑéÖ¤²»µ±£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ8.8£¬¿Éͨ¹ýÓÕµ¼Êܺ¦ÕßÔÚϵͳÉÏ´ò¿ª¶ñÒâµÄ Microsoft Office Project Îļþ£¨Èçͨ¹ý¶ñÒâµç×ÓÓʼþ¡¢WebÍøÕ¾»ò¼´Ê±ÐÂÎŵȣ©£¬µ«±ØÒª¸ÃϵͳÖеġ°×èÖ¹´Ó»¥ÁªÍø»ñÈ¡µÄOfficeÎļþÖÐÔËÐкꡱսÊõÒѱ»½ûÓ㬲¢ÇÒδÆôÓá°VBAºê֪ͨÉèÖá±£¬³É¹¦ÀûÓÿÉÄܵ¼ÖÂÔ¶³Ì´úÂëÖ´ÐУ¬Ä¿Ç°¸Ã·ì϶ÒѼì²âµ½·ì϶ÀûÓá£

CVE-2024-38199£ºWindows Line Printer Daemon (LPD) ServiceÔ¶³Ì´úÂëÖ´Ðзì϶

WindowsÐÐʽ´òÓ¡»úÊØ»¤·¨Ê½ (LPD) ·þÎñÖдæÔÚUse-After-Free·ì϶£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ9.8£¬Î´¾­Éí·ÝÑéÖ¤µÄÍþвÕßÄܹ»Í¨¹ýÍøÂçÏò¹²ÏíµÄÒ×Êܹ¥»÷µÄWindows Line Printer Daemon (LPD) ·þÎñ·¢ËÍÌØÔìµÄ´òÓ¡¹¤×÷£¬³É¹¦ÀûÓÿÉÄÜÔÚ·þÎñÆ÷Éϵ¼ÖÂÔ¶³Ì´úÂëÖ´ÐС£Ä¿Ç°¸Ã·ì϶ÒѾ­¹«¿ªÅû¶£¬Î¢ÈíµÄ¿ÉÀûÓÃÐÔÆÀ¹ÀΪ ¡°±»ÀûÓõĿÉÄÜÐÔ½ÏÓס±¡£ ΢Èí½¨ÒéÓû§²»Òª×°ÖûòÆôÓÃWindows Line Printer Daemon (LPD) ·þÎñ£¬Ä¬ÈÏÇé¿öÏÂϵͳÉÏδװÖûòÆôÓà LPD£¬×ÔWindows Server 2012 Æð£¬LPD ÒÑ°ä·¢ÆúÓá£

CVE-2024-21302£ºWindows Secure Kernel ModeÌØȨÌáÉý·ì϶

MicrosoftÖ§³Ö Virtualization Based Security (VBS)µÄ ¶à¸öWindows ϵͳ£¨Ô̺¬ Azure Ðé¹¹»ú SKUS µÄ×Ó¼¯£©ÖдæÔÚÌØȨÌáÉý·ì϶£¬³É¹¦ÀûÓÿɻñµÃ SYSTEM ȨÏÞ£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ6.7£¬¿ÉÄܵ¼ÖÂÓµÓÐÖÎÀíԱȨÏÞµÄÍþвÕß¿ÉÄܽ«µ±Ç°°æ±¾µÄ Windows ϵͳÎļþ´úÌæΪ¹ýÆÚ°æ±¾¡£Í¨¹ýÀûÓø÷ì϶£¬ÍþвÕßÄܹ»³ÁÐÂÒýÈë֮ǰÒѽ¨¸´/»º½âµÄ·ì϶¡¢ÈƹýVBS°²È«Ö°Äܲ¢ÇÔÈ¡ÊÜVBS ±£»¤µÄÊý¾Ý£¨Windows Downdate ½µ¼¶¹¥»÷£©¡£Ä¿Ç°¸Ã·ì϶ÒѾ­¹«¿ªÅû¶£¬Î¢ÈíµÄ¿ÉÀûÓÃÐÔÆÀ¹ÀΪ ¡°±»ÀûÓõĿÉÄÜÐÔ½ÏÓס±¡£

CVE-2024-38202£ºWindows Update StackÌØȨÌáÉý·ì϶

Windows Update ÖдæÔÚÌØȨÌáÉý·ì϶£¬³É¹¦ÀûÓÿɻñµÃ SYSTEM ȨÏÞ£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ7.3, ¿ÉÄܵ¼ÖÂÓµÓиù»ùÓû§È¨ÏÞµÄÍþвÕß¿ÉÄܳÁÐÂÒýÈë֮ǰÒѽ¨¸´/»º½âµÄ·ì϶»òÈƹýVBS µÄijЩְÄÜ£¨Windows Downdate ½µ¼¶¹¥»÷£©£¬³É¹¦ÀûÓø÷ì϶±ØÒªÓÕµ¼ÖÎÀíÔ±»òÓµÓÐίÅÉȨÏÞµÄÓû§Ö´ÐÐϵͳ»¹Ô­£¬´Ó¶ø´¥·¢¸Ã·ì϶¡£Ä¿Ç°¸Ã·ì϶ÒѾ­¹«¿ªÅû¶£¬Î¢ÈíµÄ¿ÉÀûÓÃÐÔÆÀ¹ÀΪ ¡°±»ÀûÓõĿÉÄÜÐÔ½ÏÓס±¡£Î¢ÈíÔÚ¿ª·¢°²È«¸üÐÂÀ´»º½â¸Ã·ì϶£¬µ«Ä¿Ç°ÉÐδ°ä²¼¡£

CVE-2024-38200£ºMicrosoft Office ºýŪ·ì϶

Microsoft OfficeÖдæÔÚÐÅϢй¶·ì϶£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ6.5£¬ÍþвÕß¿Éͨ¹ýÓÕµ¼Óû§µã»÷¶ñÒâÁ´½Ó£¨Èçͨ¹ýµç×ÓÓʼþ»ò¼´Ê±Í¨Ñ¶ÐÂÎÅ£©²¢´ò¿ªÌØÔìÎļþ£¨ÍйÜÔÚ¶ñÒâÍøÕ¾ÉÏ£©À´ÀûÓø÷ì϶£¬¶øºóÆÈʹ Office ³ÉÁ¢ÓëÔ¶³Ì¹²ÏíµÄ³öÕ¾ÏνÓ£¬´ÓÖÐÇÔÈ¡·¢Ë굀 NTLM ¹þÏ££¬µ¼ÖÂÃô¸ÐÐÅϢй¶¡ £¿Éͨ¹ý½«Óû§Ôö³¤µ½Êܱ£»¤Óû§°²È«×飬ÒÔÔ¤·ÀʹÓà NTLM ×÷ΪÉí·ÝÑéÖ¤»úÔ죬»òʹÓñíΧ·À»ðǽ¡¢±¾µØ·À»ðǽºÍ VPN ÉèÖÃ×èÖ¹ TCP 445/SMB ´ÓÍøÂç³öÕ¾£¨Õ⽫×èÖ¹ÏòÔ¶³ÌÎļþ¹²Ïí·¢ËÍ NTLM Éí·ÝÑéÖ¤ÐÂÎÅ£©À´»º½â¸Ã·ì϶¡£Ä¿Ç°¸Ã·ì϶ÒѾ­¹«¿ªÅû¶£¬Î¢ÈíµÄ¿ÉÀûÓÃÐÔÆÀ¹ÀΪ ¡°±»ÀûÓõĿÉÄÜÐÔ½ÏÓס±¡£

±¾´Î°²È«¸üÐÂÖн¨¸´µÄ9¸öÑϳÁ·ì϶Ϊ£º

l  CVE-2024-38063£ºWindows TCP/IP Ô¶³Ì´úÂëÖ´Ðзì϶

Windows TCP/IPÖдæÔÚÕûÊýÏÂÒç·ì϶£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ9.8£¬Î´¾­Éí·ÝÑéÖ¤µÄÍþвÕß¿ÉÏò Windows ÍÆËã»ú·´¸´·¢ËÍÔ̺¬ÌØÔìÊý¾Ý°üµÄ IPv6 Êý¾Ý°ü£¬³É¹¦ÀûÓÿÉÄܵ¼ÖÂÔ¶³Ì´úÂëÖ´ÐС£ÈôÊÇÖ¸±êÍÆËã»úÉϽûÓà IPv6£¬ÏµÍ³²»»áÊܵ½Ó°Ï졣΢ÈíµÄ¿ÉÀûÓÃÐÔÆÀ¹ÀΪ ¡°±»ÀûÓõĿÉÄÜÐԽϸߡ±¡£

l  CVE-2024-38160£ºWindows Network VirtualizationÔ¶³Ì´úÂëÖ´Ðзì϶

Windows ÍøÂçÐé¹¹»¯´æÔڶѻº³åÇøÒç¶Âí½Å£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ9.1£¬ÍþвÕßÄܹ»ÀûÓà Windows Server 2016 µÄ wnv.sys ×é¼þÖÐδ¾­²é³­µÄ·µ»ØÖ·´ÀûÓø÷ì϶£¬Í¨¹ý°Ñ³ÖÄÚ´æÃèÊö·ûÁбí (MDL) µÄÄÚÈÝ£¬¿ÉÄܵ¼ÖÂδ¾­ÊÚȨµÄÄÚ´æдÈ룬ÉõÖÁ¿ªÊ͵±Ç°ÔÚʹÓõÄÓÐЧ¿é£¬´Ó¶øµ¼Ö¿ͻ§»úµ½Ö÷»úÌÓÒÝ£¬Î¢ÈíµÄ¿ÉÀûÓÃÐÔÆÀ¹ÀΪ ¡°±»ÀûÓõĿÉÄÜÐÔ½ÏÓס±¡£

l  CVE-2024-38159£ºWindows Network VirtualizationÔ¶³Ì´úÂëÖ´Ðзì϶

Windows ÍøÂçÐé¹¹»¯´æÔÚUse-After-Free·ì϶£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ9.1£¬ÍþвÕßÄܹ»ÀûÓà Windows Server 2016 µÄ wnv.sys ×é¼þÖÐδ¾­²é³­µÄ·µ»ØÖ·´ÀûÓø÷ì϶£¬Í¨¹ý°Ñ³ÖÄÚ´æÃèÊö·ûÁбí (MDL) µÄÄÚÈÝ£¬¿ÉÄܵ¼ÖÂδ¾­ÊÚȨµÄÄÚ´æдÈ룬ÉõÖÁ¿ªÊ͵±Ç°ÔÚʹÓõÄÓÐЧ¿é£¬´Ó¶øµ¼Ö¿ͻ§»úµ½Ö÷»úÌÓÒÝ£¬Î¢ÈíµÄ¿ÉÀûÓÃÐÔÆÀ¹ÀΪ ¡°±»ÀûÓõĿÉÄÜÐÔ½ÏÓס±¡£

l  CVE-2024-38140£ºWindows Reliable Multicast Transport Driver (RMCAST) Ô¶³Ì´úÂëÖ´Ðзì϶

Windows ¿¿µÃס¶à²¥´«ÊäÇý¶¯·¨Ê½ (RMCAST) ´æÔÚUse-After-Free·ì϶£¬¸Ã·ì϶µÄCVSSÆÀ·ÖΪ9.8£¬Î´¾­Éí·ÝÑéÖ¤µÄÍþвÕßÄܹ»Í¨¹ýÏò·þÎñÆ÷É쵀 Windows Pragmatic General Multicast (PGM) Ê¢¿ªÌ×½Ó×Ö·¢ËÍÌØÔìµÄÊý¾Ý°üÀ´ÀûÓø÷ì϶£¬³É¹¦ÀûÓÿÉÄܵ¼ÖÂÔ¶³Ì´úÂëÖ´ÐС£¸Ã·ì϶½öÔÚÓз¨Ê½¼àÌýPGM¶Ë¿ÚµÄÇé¿öϲſɱ»ÀûÓã¬ÈôÊÇPGMÒÑ×°ÖûòÆôÓ㬵«Ã»Óз¨Ê½×÷Ϊ½Ó¹ÜÆ÷×Ô¶¯¼àÌý£¬Ôò¸Ã·ì϶²»³É±»ÀûÓᣲ»½¨Ò齫 PGM ½Ó¹ÜÆ÷¶³öÔÚ¹«¹²»¥ÁªÍøÉÏ£¬Î¢ÈíµÄ¿ÉÀûÓÃÐÔÆÀ¹ÀΪ ¡°±»ÀûÓõĿÉÄÜÐÔ½ÏÓס±¡£

l  CVE-2024-38109£ºAzure Health Bot ÌØȨÌáÉý·ì϶

l  CVE-2024-38206£ºMicrosoft Copilot Studio ÐÅϢй¶·ì϶

l  CVE-2024-38166£ºMicrosoft Dynamics 365 ¿çÕ¾¾ç±¾·ì϶

l  CVE-2022-3775£ºRedhat-CVE-2022-3775 grub2 - äÖȾijЩ Unicode ÐòÁÐʱ»ùÓڶѵÄÔ½½çдÈë

l  CVE-2023-40547£ºRedhat£ºCVE-2023-40547 Shim - HTTP Æô¶¯Ö§³ÖÖÐµÄ RCE ¿ÉÄܵ¼Ö°²È«Æô¶¯Èƹý

³ýCVE-2024-38063±í£¬Î¢ÈíµÄ¿ÉÀûÓÃÐÔÆÀ¹ÀÖÐÆäËû¡°±»ÀûÓõĿÉÄÜÐԽϸߡ±µÄ·ì϶»¹Ô̺¬£º

l  CVE-2024-38133£ºWindows ÄÚºËÌØȨÌáÉý·ì϶

l  CVE-2024-38148£ºWindows Secure Channel»Ø¾ø·þÎñ·ì϶

l  CVE-2024-38163£ºWindows Update StackÌØȨÌáÉý·ì϶

l  CVE-2024-38198£ºWindows Print SpoolerÌØȨÌáÉý·ì϶

l  CVE-2024-38196£ºWindows Common Log File System DriverÌØȨÌáÉý·ì϶

l  CVE-2024-38141£ºWindows Ancillary Function Driver for WinSockÌØȨÌáÉý·ì϶

l  CVE-2024-38125/ CVE-2024-38144£ºKernel Streaming WOW Thunk Service DriverÌØȨÌáÉý·ì϶

l  CVE-2024-38147/ CVE-2024-38150£ºMicrosoft DWM Core LibraryÌØȨÌáÉý·ì϶

΢Èí8Ô¸üÐÂÉæ¼°µÄ²¿ÃÅ·ì϶ÁбíÈçÏ£¬ÆäÖв»Ô̺¬Chrome·Ö·¢µÄ9¸öMicrosoft Edge (Chromium-based)·ì϶£º

CVE ID

CVE ±êÌâ

ÑϳÁÐÔ

CVE-2024-38109

Azure   Health Bot ÌØȨÌáÉý·ì϶

ÑϳÁ

CVE-2024-38206

Microsoft   Copilot Studio ÐÅϢй¶·ì϶

ÑϳÁ

CVE-2024-38166

Microsoft   Dynamics 365 ¿çÕ¾¾ç±¾·ì϶

ÑϳÁ

CVE-2024-38140

Windows   Reliable Multicast Transport Driver (RMCAST) Ô¶³Ì´úÂëÖ´Ðзì϶

ÑϳÁ

CVE-2024-38160

Windows   Network VirtualizationÔ¶³Ì´úÂëÖ´Ðзì϶

ÑϳÁ

CVE-2024-38159

Windows   Network VirtualizationÔ¶³Ì´úÂëÖ´Ðзì϶

ÑϳÁ

CVE-2022-3775

Redhat£ºCVE-2022-3775 grub2 - äÖȾijЩ Unicode ÐòÁÐʱ»ùÓڶѵÄÔ½½çдÈë

ÑϳÁ

CVE-2023-40547

Redhat£ºCVE-2023-40547 Shim - HTTP Æô¶¯Ö§³ÖÖÐµÄ RCE ¿ÉÄܵ¼Ö°²È«Æô¶¯Èƹý

ÑϳÁ

CVE-2024-38063

Windows   TCP/IP Ô¶³Ì´úÂëÖ´Ðзì϶

ÑϳÁ

CVE-2024-38168

.NET ºÍ Visual Studio »Ø¾ø·þÎñ·ì϶

¸ßΣ

CVE-2024-38167

.NET ºÍ Visual Studio ÐÅϢй¶·ì϶

¸ßΣ

CVE-2024-38162

Azure   Connected Machine Agent ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38098

Azure   Connected Machine Agent ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38195

Azure   CycleCloud Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38158

Azure IoT   SDK Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38157

Azure IoT   SDK Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38108

Azure   Stack Hub ºýŪ·ì϶

¸ßΣ

CVE-2024-38201

Azure   Stack Hub ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38199

Windows   Line Printer Daemon (LPD) ServiceÔ¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38123

Windows À¶ÑÀÇý¶¯·¨Ê½ÐÅϢй¶·ì϶

¸ßΣ

CVE-2024-38211

Microsoft   Dynamics 365£¨on-premises£©¿çÕ¾µã¾ç±¾·ì϶

¸ßΣ

CVE-2024-38218

Microsoft   Edge£¨»ùÓÚ HTML£©ÄÚ´æ°Ü»µ·ì϶

¸ßΣ

CVE-2024-38118

Microsoft   Local Security Authority (LSA) Server ÐÅϢй¶·ì϶

¸ßΣ

CVE-2024-38122

Microsoft   Local Security Authority (LSA) Server ÐÅϢй¶·ì϶

¸ßΣ

CVE-2024-38200

Microsoft   Office ºýŪ·ì϶

¸ßΣ

CVE-2024-38084

Microsoft   OfficePlus ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38172

Microsoft   Excel Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38170

Microsoft   Excel Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38173

Microsoft   Outlook Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38171

Microsoft   PowerPoint Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38189

Microsoft   Project Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38169

Microsoft   Office Visio Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38134

Kernel   Streaming WOW Thunk Service Driver ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38144

Kernel   Streaming WOW Thunk Service Driver ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38125

Kernel   Streaming WOW Thunk Service Driver ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38197

Microsoft   Teams for iOS ºýŪ·ì϶

¸ßΣ

CVE-2024-38152

Windows   OLE Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-37968

Windows   DNS ºýŪ·ì϶

¸ßΣ

CVE-2024-38141

Windows   Ancillary Function Driver for WinSock ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38193

Windows   Ancillary Function Driver for WinSock ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38177

Windows   App Installer ºýŪ·ì϶

¸ßΣ

CVE-2024-38131

Clipboard   Virtual Channel Extension Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38215

Windows   Cloud Files Mini Filter Çý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38196

Windows ͨÓÃÈÕÖ¾ÎļþϵͳÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38165

Windows ѹËõÎļþ¼Ð´Û¸Ä·ì϶

¸ßΣ

CVE-2024-38138

Windows ²¿Êð·þÎñÔ¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38150

Windows   DWM Ö÷Ìâ¿âÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38147

Microsoft   DWM Ö÷Ìâ¿âÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38223

Windows   Initial Machine Configuration ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38114

Windows IP   ·ÓÉÖÎÀíµ¥ÔªÔ¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38116

Windows IP   ·ÓÉÖÎÀíµ¥ÔªÔ¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38115

Windows IP   ·ÓÉÖÎÀíµ¥ÔªÔ¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-29995

Windows   Kerberos ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38151

Windows ÄÚºËÐÅϢй¶·ì϶

¸ßΣ

CVE-2024-38133

Windows ÄÚºËÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38127

Windows   Hyper-V ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38153

Windows ÄÚºËÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38106

Windows ÄÚºËÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38187

Windows ÄÚºËģʽÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38191

ÄÚºËÁ÷·þÎñÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38184

Windows ÄÚºËģʽÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38186

Windows ÄÚºËģʽÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38185

Windows ÄÚºËģʽÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38146

Windows   Layer-2 Bridge Network Driver »Ø¾ø·þÎñ·ì϶

¸ßΣ

CVE-2024-38145

Windows   Layer-3 Bridge Network Driver »Ø¾ø·þÎñ·ì϶

¸ßΣ

CVE-2024-38161

Windows   Mobile Broadband Driver Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38132

Windows ÍøÂçµØַת»» (NAT) »Ø¾ø·þÎñ·ì϶

¸ßΣ

CVE-2024-38126

Windows ÍøÂçµØַת»» (NAT) »Ø¾ø·þÎñ·ì϶

¸ßΣ

CVE-2024-38135

Windows µ¯ÐÔÎļþϵͳ (ReFS) ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38117

NTFS ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38107

Windows   Power Dependency Coordinator ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38198

Windows   Print Spooler ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38137

Windows   Resource Manager PSM Service Extension ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38136

Windows   Resource Manager PSM Service Extension ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38130

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38128

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38154

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38121

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38214

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) ÐÅϢй¶·ì϶

¸ßΣ

CVE-2024-38120

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) Ô¶³Ì´úÂëÖ´Ðзì϶

¸ßΣ

CVE-2024-38178

Scripting   Engine ÄÚ´æ°Ü»µ·ì϶

¸ßΣ

CVE-2022-2601

Redhat£ºCVE-2022-2601 grub2 - grub_font_construct_glyph() ÖеĻº³åÇøÒç³ö¿ÉÄܵ¼ÖÂÔ½½çдÈë²¢¿ÉÄÜÈƹý°²È«Æô¶¯

¸ßΣ

CVE-2024-21302

Windows °²È«ÄÚºËģʽÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38142

Windows °²È«ÄÚºËģʽÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38155

Security   Center Broker ÐÅϢй¶·ì϶

¸ßΣ

CVE-2024-38180

Windows   SmartScreen °²È«Ö°ÄÜÈƹý·ì϶

¸ßΣ

CVE-2024-38148

Windows   Secure Channel »Ø¾ø·þÎñ·ì϶

¸ßΣ

CVE-2024-38202

Windows   Update Stack ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38163

Windows   Update Stack ÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38143

Windows   WLAN AutoConfig ·þÎñÌØȨÌáÉý·ì϶

¸ßΣ

CVE-2024-38213

Windows   Mark of the Web °²È«Ö°ÄÜÈƹý·ì϶

ÖÐΣ

CVE-2024-38219

Microsoft   Edge£¨»ùÓÚ Chromium£©Ô¶³Ì´úÂëÖ´Ðзì϶

ÖÐΣ

CVE-2024-38222

Microsoft   Edge£¨»ùÓÚ Chromium£©ÐÅϢй¶·ì϶

δ֪

 

¶þ¡¢Ó°ÏìÁìÓò

ÊÜÓ°ÏìµÄ²úÆ·/Ö°ÄÜ/·þÎñ/×é¼þÔ̺¬£º

Windows Secure Kernel Mode

Windows Kerberos

Microsoft Windows DNS

Windows TCP/IP

Microsoft Office

Azure Connected Machine Agent

Windows Kernel

Windows Power Dependency Coordinator

Azure Stack

Azure Health Bot

Windows IP Routing Management Snapin

Windows NTFS

Microsoft Local Security Authority Server (lsasrv)

Windows Routing and Remote Access Service (RRAS)

Microsoft Bluetooth Driver

Microsoft Streaming Service

Windows Network Address Translation (NAT)

Windows Clipboard Virtual Channel Extension

Windows NT OS Kernel

Windows Resource Manager

Windows Deployment Services

Reliable Multicast Transport Driver (RMCAST)

Windows Ancillary Function Driver for WinSock

Windows WLAN Auto Config Service

Windows Layer-2 Bridge Network Driver

Windows DWM Core Library

Windows Transport Security Layer (TLS)

Microsoft WDAC OLE DB provider for SQL

Windows Security Center

Azure IoT SDK

Windows Network Virtualization

Windows Mobile Broadband

Windows Update Stack

Windows Compressed Folder

Microsoft Dynamics

.NET and Visual Studio

Microsoft Office Visio

Microsoft Office Excel

Microsoft Office PowerPoint

Microsoft Office Outlook

Windows App Installer

Windows Scripting

Windows SmartScreen

Windows Kernel-Mode Drivers

Microsoft Office Project

Azure CycleCloud

Windows Common Log File System Driver

Microsoft Teams

Windows Print Spooler Components

Line Printer Daemon Service (LPD)

Microsoft Copilot Studio

Windows Mark of the Web (MOTW)

Windows Cloud Files Mini Filter Driver

Microsoft Edge (Chromium-based)

Windows Initial Machine Configuration

 

Èý¡¢°²È«´ëÊ©

3.1 Éý¼¶°æ±¾

Ŀǰ΢ÈíÒÑ°ä²¼Óйذ²È«¸üУ¬½¨ÒéÊÜÓ°ÏìµÄÓû§¾¡¿ì½¨¸´¡£

£¨Ò»£© Windows Update×Ô¶¯¸üÐÂ

Microsoft UpdateĬÈÏÆôÓ㬵±ÏµÍ³¼ì²âµ½¿ÉÓøüÐÂʱ£¬½«»á×Ô¶¯ÏÂÔظüв¢±ÉÈËÒ»´ÎÆô¶¯Ê±×°Öá£Ò²¿ÉÑ¡Ôñͨ¹ýÒÔϲ½ÖèÊÖ¶¯½øÐиüУº

1¡¢µã»÷¡°ÆðÍ·²Ëµ¥¡±»ò°´Windows¿ì½Ý¼ü£¬µã»÷½øÈë¡°ÉèÖá±

2¡¢Ñ¡Ôñ¡°¸üкͰ²È«¡±£¬½øÈë¡°Windows¸üС±£¨Windows 8¡¢Windows 8.1¡¢Windows Server 2012ÒÔ¼°Windows Server 2012 R2¿Éͨ¹ý½ÚÔìÃæ°å½øÈë¡°Windows¸üС±£¬¾ßÌå²½ÖèΪ¡°½ÚÔìÃæ°å¡±->¡°ÏµÍ³ºÍ°²È«¡±->¡°Windows¸üС±£©

3¡¢Ñ¡Ôñ¡°²é³­¸üС±£¬ÆÚ´ýϵͳ×Ô¶¯²é³­²¢ÏÂÔØ¿ÉÓøüС£

4¡¢¸üÐÂʵÏÖºó³ÁÆôÍÆËã»ú£¬¿Éͨ¹ý½øÈë¡°Windows¸üС±->¡°²é¿´¸üк¹Çà¼Í¼¡±²é¿´ÊÇ·ñ³É¹¦×°ÖÃÁ˸üС£¶ÔÓÚûÓгɹ¦×°ÖõĸüУ¬Äܹ»µã»÷¸Ã¸üÐÂÃû³Æ½øÈë΢Èí¹Ù·½¸üÐÂÃèÊöÁ´½Ó£¬µã»÷×îеÄSSUÃû³Æ²¢ÔÚÐÂÁ´½ÓÖеã»÷¡°Microsoft ¸üÐÂĿ¼¡±£¬¶øºóÔÚÐÂÁ´½Óµ±Ñ¡ÔñºÏÓÃÓÚÖ¸±êϵͳµÄ²¹¶¡½øÐÐÏÂÔز¢×°Öá£

£¨¶þ£© ÊÖ¶¯×°ÖøüÐÂ

Microsoft¹Ù·½ÏÂÔØÏàÓ¦²¹¶¡½øÐиüС£

2024Äê8Ô°²È«¸üÐÂÏÂÔØÁ´½Ó£º

https://msrc.microsoft.com/update-guide/releaseNote/2024-Aug

²¹¶¡ÏÂÔØʾÀý£¨²Î¿¼£©£º

1.´ò¿ªÉÏÊöÏÂÔØÁ´½Ó£¬µã»÷·ì϶ÁбíÖÐÒª½¨¸´µÄCVEÁ´½Ó¡£

image.png

Àý1£ºÎ¢Èí·ì϶ÁÐ±í£¨Ê¾Àý£©

2.ÔÚ΢Èí²¼¸æÒ³Ãæµ×²¿×ó²à¡¾²úÆ·¡¿Ñ¡ÔñÏàÓ¦µÄϵͳÀàÐÍ£¬µã»÷ÓҲࡾÏÂÔØ¡¿´¦´ò¿ª²¹¶¡ÏÂÔØÁ´½Ó¡£

image.png

Àý2£ºCVE-2022-21989²¹¶¡ÏÂÔØʾÀý

3.µã»÷¡¾°²È«¸üС¿£¬´ò¿ª²¹¶¡ÏÂÔØÒ³Ã棬ÏÂÔØÏàÓ¦²¹¶¡²¢½øÐÐ×°Öá£

image.png

Àý3£º²¹¶¡ÏÂÔؽçÃæ

4.×°ÖÃʵÏÖºó³ÁÆôÍÆËã»ú¡£

3.2 һʱ´ëÊ©

ÔÝÎÞ¡£

3.3 ͨÓý¨Òé

l  ¶¨ÆÚ¸üÐÂϵͳ²¹¶¡£¬Ï÷¼õϵͳ·ì϶£¬ÌáÉý·þÎñÆ÷µÄ°²È«ÐÔ¡£

l  ¼ÓǿϵͳºÍÍøÂçµÄ½Ó¼û½ÚÔ죬Åú¸Ä·À»ðǽսÊõ£¬¹Ø¹Ø·Ç±ØÒªµÄÀûÓö˿ڻò·þÎñ£¬Ï÷¼õ½«Î£ÏÕ·þÎñ£¨ÈçSSH¡¢RDPµÈ£©Â¶³öµ½¹«Íø£¬Ï÷¼õ¹¥»÷Ãæ¡£

l  ʹÓÃÆóÒµ¼¶°²È«²úÆ·£¬ÌáÉýÆóÒµµÄÍøÂ簲ȫ»úÄÜ¡£

l  ¼ÓǿϵͳÓû§ºÍȨÏÞÖÎÀí£¬ÆôÓöà³É·ÖÈÏÖ¤»úÔìºÍ×îÓ×ȨÏÞ×¼Ôò£¬Óû§ºÍÈí¼þȨÏÞӦά³ÖÔÚ×îµÍÏ޶ȡ£

l  ÆôÓÃÇ¿ÃÜÂëÕ½Êõ²¢ÉèÖÃΪ¶¨ÆÚÅú¸Ä¡£

3.4 ²Î¿¼Á´½Ó

https://msrc.microsoft.com/update-guide/releaseNote/2024-Aug

https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-38063

https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-38202

 

ËÄ¡¢°æ±¾ÐÅÏ¢

°æ±¾

ÈÕÆÚ

±¸×¢

V1.0

2024-08-14

³õ´Î°ä²¼

 

Îå¡¢¸½Â¼

5.1 GA»Æ½ð¼×¼ò½é

GA»Æ½ð¼×³ÉÁ¢ÓÚ1996Ä꣬ÊÇÓÉÁôÃÀ²©Ê¿ÑÏÍû¼ÑŮʿ´´½¨µÄ¡¢Õ¼ÓÐÆëÈ«×ÔÖ÷֪ʶ²úȨµÄÐÅÏ¢°²È«¸ß¿Æ¼¼ÆóÒµ¡£ÊǹúÄÚ×î¾ßʵÁ¦µÄÐÅÏ¢°²È«²úÆ·¡¢°²È«·þÎñ½â¾ö¹æ»®µÄÁ캽ÆóÒµÖ®Ò»¡£

¹«Ë¾×ܲ¿Î»ÓÚ±±¾©ÊÐÖйشåÈí¼þÔ°GA»Æ½ð¼×´óÏ㬹«Ë¾Ô±¹¤6000ÓàÈË£¬Ñз¢ÍŶÓ1200ÓàÈË, ¼¼Êõ·þÎñÍŶÓ1300ÓàÈË¡£ÔÚÈ«¹ú¸÷Ê¡¡¢ÊÓ×¢×ÔÖÎÇøÉèÁ¢·ÖÖ§»ú¹¹ÁùÊ®¶à¸ö£¬Õ¼Óи²¸ÇÈ«¹úµÄÏúÊÛϵͳ¡¢Çþ·ϵͳºÍ¼¼ÊõÖ§³Öϵͳ¡£¹«Ë¾ÓÚ2010Äê6ÔÂ23ÈÕÔÚÉîÛÚÖÐÓ×°å¹ÒÅÆÉÏÊС££¨¹ÉƱ´úÂ룺002439£©

¶àÄêÀ´£¬GA»Æ½ð¼×ÖÂÁ¦ÓÚÌṩӵÓйú¼Ê¾ºÕùÁ¦µÄ×ÔÖ÷´´Ðµİ²È«²úÆ·ºÍ×î¼Ñʵ¼Ê·þÎñ£¬Ô®ÊÖ¿Í»§È«ÃæÌáÉýÆäIT»ù´¡ÉèÊ©µÄ°²È«ÐԺͳö²úЧÁ¦£¬Îª´òÔìºÍÌáÉý¹ú¼Ê»¯µÄÃñ×åÐÅÏ¢°²È«²úÒµÁì¾üÆ·Åƶø²»Ð¸ÖÂÁ¦¡£

5.2 ¹ØÓÚGA»Æ½ð¼×

GA»Æ½ð¼×°²È«Ó¦¼±ÏìÓ¦ÖÐÐÄÒÑ°ä²¼1000¶à¸ö·ì϶¹«¸æ΢·çÏÕÔ¤¾¯£¬ÎÒÃǽ«³ÖÐø¸ú×ÙÈ«Çò×îеÄÍøÂ簲ȫÊÂÎñºÍ·ì϶£¬ÎªÆóÒµµÄÐÅÏ¢°²È«±£¼Ý»¤º½¡£

¹Ø×¢ÎÒÃÇ£º

image.png