• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Two Zero-Days Fixed in December Patch Tuesday

You are here: Home / General Cyber Security News / Two Zero-Days Fixed in December Patch Tuesday
December 14, 2022

The last Microsoft Patch Tuesday of 2022 dealt with nearly a fifty percent century of vulnerabilities together with two zero-times, one particular of which is being exploited in the wild.

A handful of the bugs are rated “critical” while 13 are explained by Microsoft as “more probably to be exploited,” meaning there is still a lot of do the job to do for sysadmins at the end of the yr.

The zero-day that is at present staying exploited is CVE-2022-44698 – a security characteristic bypass vulnerability in Windows SmartScreen. This resource functions with the vendor’s Mark of the Web (MOTW) functionality which flags data files downloaded from the internet, in accordance to Satnam Narang, senior employees research engineer at Tenable.

✔ Approved Seller From Our Partners
Mullvad VPN Discount

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount


“This vulnerability can be exploited in various situations, including via malicious web sites and destructive attachments delivered more than email or messaging providers,” he additional.

“They need a likely victim to take a look at the malicious site or open up a destructive attachment in buy to bypass SmartScreen.”

Even so, the evidence-of-strategy code for the bug is not imagined to have been publicly disclosed as but.

The next zero-working day is CVE-2022-44710 – an elevation of privilege vulnerability in the DirectX Graphics Kernel which was publicly disclosed prior to a patch turning out to be available, but is not yet currently being exploited.

“It is deemed to be a flaw that is fewer probable to be exploited primarily based on Microsoft’s Exploitability Index,” confirmed Narang.

Mike Walters, VP of vulnerability and threat investigate at Action1, pointed to critical PowerShell vulnerability CVE-2022-41076 as deserving of consideration. It has an effect on all Windows OS variations from Windows 7 and Windows Server 2008 R2 on.

“This critical vulnerability has a significant CVSS risk score of 8.5, for the reason that any authenticated person can bring about the vulnerability and run unapproved PowerShell commands execution in the focus on method, even nevertheless the exploitation does call for some preparation from the attacker,” Walters stated.

CVE-2022-44693 is a critical distant code execution vulnerability in SharePoint with a CVSS score of 8.8. Crucially it’s of lower complexity and requires no privilege escalation.

“To exploit it, attackers only need to have entry to the fundamental consumer account with Control Checklist permissions, which most corporations grant to all SharePoint users by default,” warned Walters.

“This vulnerability does not have to have consumer conversation at the time attackers get the ideal qualifications, they can execute code remotely on a concentrate on SharePoint server.”

Editorial credit rating icon image: Paolo Bona / Shutterstock.com


Some components of this short article are sourced from:
www.infosecurity-magazine.com

Previous Post: «december 2022 patch tuesday: get latest security updates from microsoft December 2022 Patch Tuesday: Get Latest Security Updates from Microsoft and More
Next Post: Loan Fee Fraud Surges by a Fifth as Christmas Approaches Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • US Supreme Court Allows WhatsApp to Sue NSO Group
  • Researchers Find Security Flaw in JsonWebToken Library Used By 20,000+ Projects
  • StrongPity Hackers Distribute Trojanized Telegram App to Target Android Users
  • GitHub Adds Features to Automate Vulnerability Code Scanning
  • Expert Analysis Reveals Cryptographic Weaknesses in Threema Messaging App
  • Italian Users Warned of Malware Attack Targeting Sensitive Information
  • Cloud-delivered malware attacks almost tripled in 2022
  • Threat hunting for MSPs
  • UK Charities Offered Free Cyber Essentials Support
  • Ukraine: Russian Cyber-Attacks Should Be Considered War Crimes

Copyright © TheCyberSecurity.News, All Rights Reserved.