2022-02 Microsoft vulnerability notification

Microsoft officially released 2022 year 02 Monthly security update . This month's update announced 70 A loophole , contain 17 A privilege escalation vulnerability 、16 Remote Code Execution Vulnerability 、6 An information leak 、5 A denial of service vulnerability 、3 An identity counterfeiting vulnerability 、3 A security feature bypasses vulnerabilities and 1 A tampering vulnerability , among 50 The vulnerability level is “Important”（ serious ）. Users are advised to use the tinder safety software in time （ personal / Enterprises ）【 Bug repair 】 Feature update patch .

01

Involved components

• Azure Data Explorer
• Kestrel Web Server
• Microsoft Dynamics
• Microsoft Dynamics GP
• Microsoft Edge (Chromium-based)
• Microsoft Office
• Microsoft Office Excel
• Microsoft Office Outlook
• Microsoft Office SharePoint
• Microsoft Office Visio
• Microsoft OneDrive
• Microsoft Teams
• Microsoft Windows Codecs Library
• Power BI
• Roaming Security Rights Management Services
• Role: DNS Server
• Role: Windows Hyper-V
• SQL Server
• Visual Studio Code
• Windows Common Log File System Driver
• Windows DWM Core Library
• Windows Kernel
• Windows Kernel-Mode Drivers
• Windows Named Pipe File System
• Windows Print Spooler Components
• Windows Remote Access Connection Manager
• Windows Remote Procedure Call Runtime
• Windows User Account Profile
• Windows Win32K

（ Slide down to view ）

02

The following vulnerabilities require special attention

Windows Kernel privilege escalation vulnerability

CVE-2022-21989

Severity level ： serious CVSS：7.8

Utilized level ： May be used

An attacker who successfully exploits this vulnerability can elevate privileges and execute malicious programs or access resources . The vulnerability has been publicly disclosed , No wild use has been found yet .

Microsoft OfficeGraphics Remote code execution vulnerability

CVE-2022-22003

Severity level ： serious CVSS：7.8

Utilized level ： May be used

After user interaction triggers the vulnerability , An attacker can exploit this vulnerability to conduct a local attack on the victim's computer . The preview pane is not the medium of this vulnerability , Therefore, the vulnerability will not be triggered .

Microsoft Office ClickToRun Remote code execution vulnerability

CVE-2022-22004

Severity level ： serious CVSS：7.8

Utilized level ： May be used

The vulnerability and CVE-2022-22003 be similar , Require user interaction to trigger vulnerability . An attacker can exploit this vulnerability to conduct a local attack on the victim's computer .

Windows DNS Server Remote code execution vulnerability

CVE-2022-21984

Severity level ： serious CVSS：8.8

Utilized level ： May be used

The flaw in the DNS The configuration is easy to be exploited by attackers when dynamic updates are enabled . An attacker who successfully exploits this vulnerability can execute arbitrary code on the victim's computer .

03

Repair suggestions

1、 Through the tinder Personal Edition / Enterprise Edition 【 Bug repair 】 Function fix vulnerability .

2、 Download the official patch from Microsoft

https://msrc.microsoft.com/update-guide

Complete Microsoft notice ：

https://msrc.microsoft.com/update-guide/releaseNote/2022-Feb