漏洞信息 | 漏洞名称 | Internet 连接共享 (ICS) 远程执行代码漏洞 |
漏洞编号 | CVE编号 | CVE-2023-35630
CVE-2023-35641 |
漏洞评估 | 披露时间 | 2023-12-12 |
漏洞类型 | 代码注入 | |
危害评级 | 高危 | |
公开程度 | PoC未公开 | |
威胁类型 | 远程 | |
利用情报 | 在野利用 | 是 |
影响产品 | 产品名称 | Windows |
受影响版本 | Windows 10 Version 22H2 for ARM64-based Systems、Windows 10 Version 22H2 for x64-based Systems、Windows 11 Version 22H2 for x64-based Systems、Windows 11 Version 22H2 for ARM64-based Systems、Windows 10 Version 21H2 for x64-based Systems、Windows 10 Version 21H2 for ARM64-based Systems、Windows 10 Version 21H2 for 32-bit Systems、Windows 11 version 21H2 for ARM64-based Systems、Windows 11 version 21H2 for x64-based Systems、Windows Server 2022 (Server Core installation)、Windows Server 2022 (Server Core installation)、Windows Server 2022、Windows Server 2022、Windows Server 2019 (Server Core installation)、Windows Server 2019、Windows 10 Version 1809 for ARM64-based Systems、Windows 10 Version 1809 for x64-based Systems、Windows 10 Version 1809 for 32-bit Systems、Windows Server 2012 R2 (Server Core installation)、Windows Server 2012 R2、Windows Server 2012 (Server Core installation)、Windows Server 2012、Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)、Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)、Windows Server 2008 R2 for x64-based Systems Service Pack 1、Windows Server 2008 R2 for x64-based Systems Service Pack 1、Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)、Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)、Windows Server 2008 for x64-based Systems Service Pack 2、Windows Server 2008 for x64-based Systems Service Pack 2、Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)、Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)、Windows Server 2008 for 32-bit Systems Service Pack 2、Windows Server 2008 for 32-bit Systems Service Pack 2、Windows Server 2016 (Server Core installation)、Windows Server 2016、Windows 10 Version 1607 for x64-based Systems、Windows 10 Version 1607 for 32-bit Systems、Windows 10 for x64-based Systems、Windows 10 for 32-bit Systems、Windows Server 2022、 23H2 Edition (Server Core installation)、Windows 11 Version 23H2 for x64-based Systems、Windows 11 Version 23H2 for ARM64-based Systems、Windows 10 Version 22H2 for 32-bit Systems | |
影响范围 | 广 | |
有无修复补丁 | 有 |
微软官方已更新受影响软件的安全补丁,用户可根据不同系统版本下载安装对应的安全补丁,安全更新链接如下:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35630
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35641
原文始发于微信公众号(安迈信科应急响应中心):【漏洞通告】Internet 连接共享 (ICS) 远程执行代码漏洞
- 左青龙
- 微信扫一扫
- 右白虎
- 微信扫一扫
评论