وصله 150 آسیبپذیری توسط اصلاحیههای آوریل مایکروسافت
سهشنبه، 21 فروردین، شرکت مایکروسافت (Microsoft)، مجموعه اصلاحیههای امنیتی ماهانه خود را برای ماه میلادی آوریل 2024 منتشر کرد. اصلاحیههای مذکور، 150 آسیبپذیری را در Windows و محصولات مختلف این شرکت ترمیم میکنند.
در این گزارش که با همکاری شرکت مهندسی شبکه گستر و مرکز مدیریت راهبردی افتا تهیه شده، برخی از این بهروزرسانیهای منتشرشده بهطور اجمالی مورد بررسی قرار گرفته است.
مجموعهاصلاحیههای آوریل، انواع مختلفی از آسیبپذیریها از جمله موارد زیر را در محصولات مایکروسافت ترمیم میکنند:
- Remote Code Execution – به اختصار RCE (اجرای از راه دور کد)
- Elevation of Privilege (افزایش سطح دسترسی)
- Information Disclosure (افشای اطلاعات)
- Denial of Service – به اختصار DoS (منع سرویس)
- Security Feature Bypass (دور زدن سازوکارهای امنیتی)
- Spoofing (جعل)
RCE، با 67 مورد، بیشترین سهم از انواع آسیبپذیریهای این ماه را به خود اختصاص داده است. بیش از نیمی از ضعفهای RCE آوریل مربوط به Microsoft SQL است. Elevation of Privilege و Security Feature Bypass، به ترتیب با 31 و 29 مورد، در جایگاههای بعدی قرار دارند.
علیرغم تعداد بالای آسیبپذیریهای این ماه، مایکروسافت، فقط 3 ضعف امنیتی آوریل را “بحرانی” (Critical) گزارش کرده است. شدت سایر آسیبپذیریها نیز “زیاد” (Important) اعلام شده است.
در درجهبندی شرکت مایکروسافت، نقاط ضعفی که سوءاستفاده از آنها بدون نیاز به دخالت و اقدام کاربر باشد، “بحرانی” تلقی شده و اصلاحیههایی که این نوع نقاط ضعف را ترمیم میکنند، بالاترین درجه حساسیت یا “بحرانی” را دریافت مینمایند. نقاط ضعفی که سوءاستفاده موفق از آنها نیازمند فریب کاربر به انجام کاری باشد یا نیازمند دسترسی فیزیکی به دستگاه هدف باشد، توسط اصلاحیههایی با درجه حساسیت “زیاد” برطرف و ترمیم میگردند.
اما نکته قابل توجه این که، حداقل 2 مورد از آسیبپذیریهای وصلهشده، از نوع “روز-صفر” (Zero-day) بوده و از مدتی پیش، مورد سوءاستفاده مهاجمان قرار گرفتهاند. فهرست دو آسیبپذیری روز-صفر این ماه که جزییات آنها نیز به صورت عمومی افشا شده به شرح زیر است:
- CVE-2024-26234 که ضعفی از نوع Spoofing است که یک Proxy Driver امضاشده توسط Microsoft Hardware Publisher Certificate از آن متأثر میشود. مهاجمان از درایور مذکور جهت توزیع یک دربپشتی سوءاستفاده کردهاند.
- CVE-2024-29988 که ضعفی از نوع Security Feature Bypass است و سوءاستفاده موفق از آن، مهاجم را قادر به عبور از سد کنترل SmartScreen در Microsoft Defender میکند. به گفته برخی منابع، گروه موسوم Water Hydra، با انگیزههای مالی در حال سوءاستفاده از این آسیبپذیری جهت توزیع DarkMe RAT هستند.
فهرست کامل آسیبپذیریهای ترمیمشده توسط مجموعهاصلاحیههای آوریل 2024 مایکروسافت در جدول زیر قابل مطالعه است:
تاریخ انتشار | تاریخ آخرین بهروزرسانی | شناسه | شرح | افشای عمومی | گزارش سوءاستفاده |
Apr 9, 2024 | Apr 9, 2024 | Azure CycleCloud Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Azure Identity Library for .NET Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Azure Monitor Agent Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | SmartScreen Prompt Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Distributed File System (DFS) Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Hyper-V Denial of Service Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Azure AI Search Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Authentication Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Defender for IoT Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Defender for IoT Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Defender for IoT Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Storage Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Cryptographic Services Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Azure Arc-enabled Kubernetes Extension Cluster-Scope Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Brokering File System Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Brokering File System Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Brokering File System Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Remote Access Connection Manager Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Remote Access Connection Manager Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Remote Access Connection Manager Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Excel Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | libarchive Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Remote Access Connection Manager Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Virtual Machine Bus (VMBus) Denial of Service Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows rndismp6.sys Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows rndismp6.sys Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft SharePoint Server Spoofing Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Kerberos Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows SMB Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft WDAC OLE DB Provider for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows USB Print Driver Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Telephony Server Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Win32k Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Telephony Server Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Defender Credential Guard Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Update Stack Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Update Stack Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Proxy Driver Spoofing Vulnerability | بله | بله | |
Apr 9, 2024 | Apr 9, 2024 | Windows DNS Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows DNS Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Telephony Server Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows CSC Service Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Cryptographic Services Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows DNS Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Distributed File System (DFS) Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows DNS Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows DNS Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows DNS Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows DNS Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Mobile Hotspot Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | HTTP.sys Denial of Service Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Kernel Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Remote Access Connection Manager Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows File Server Resource Management Service Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | DHCP Server Service Denial of Service Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft WDAC SQL Server ODBC Driver Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Brokering File System Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | DHCP Server Service Denial of Service Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft WDAC OLE DB Provider for SQL Server Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Remote Access Connection Manager Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | DHCP Server Service Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | DHCP Server Service Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Azure Migrate Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Kerberos Denial of Service Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows DWM Core Library Information Disclosure Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Install Service Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Lenovo: CVE-2024-23594 Stack buffer overflow in Lenovo system recovery boot manager | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Lenovo: CVE-2024-23593 Zero Out Boot Manager and drop to UEFI Shell | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Authentication Elevation of Privilege Vulnerability | خیر | خیر | |
Mar 12, 2024 | Apr 9, 2024 | Windows Kerberos Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Azure Compute Gallery Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability | خیر | خیر | |
Mar 12, 2024 | Apr 9, 2024 | Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Defender for IoT Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Defender for IoT Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Microsoft Defender for IoT Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Windows Kernel Elevation of Privilege Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Azure Private 5G Core Denial of Service Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Outlook for Windows Spoofing Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | خیر | خیر | |
Apr 9, 2024 | Apr 9, 2024 | BitLocker Security Feature Bypass Vulnerability | خیر | خیر | |
May 9, 2023 | Apr 8, 2024 | Secure Boot Security Feature Bypass Vulnerability | بله | بله | |
Apr 9, 2024 | Apr 9, 2024 | Intel: CVE-2022-0001 Branch History Injection | خیر | خیر | |
Nov 13, 2018 | Apr 9, 2024 | Latest Servicing Stack Updates | خیر | خیر |
منابع:
https://msrc.microsoft.com/update-guide/vulnerability
https://thehackernews.com/2024/04/microsoft-fixes-149-flaws-in-huge-april.html