KLA73227 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, cause denial of service, spoof user interface, bypass security restrictions.

Below is a complete list of vulnerabilities:

1. An elevation of privilege vulnerability in Windows Win32 Kernel Subsystem can be exploited remotely to gain privileges.
2. A remote code execution vulnerability in Windows Remote Desktop Licensing Service can be exploited remotely to execute arbitrary code.
3. An elevation of privilege vulnerability in Windows Graphics Component can be exploited remotely to gain privileges.
4. An elevation of privilege vulnerability in PowerShell can be exploited remotely to gain privileges.
5. A remote code execution vulnerability in Windows libarchive can be exploited remotely to execute arbitrary code.
6. An elevation of privilege vulnerability in Windows Installer can be exploited remotely to gain privileges.
7. An information disclosure vulnerability in Windows Authentication can be exploited remotely to obtain sensitive information.
8. An elevation of privilege vulnerability in Kernel Streaming Service Driver can be exploited remotely to gain privileges.
9. An elevation of privilege vulnerability in Win32k can be exploited remotely to gain privileges.
10. A denial of service vulnerability in Windows Networking can be exploited remotely to cause denial of service.
11. A spoofing vulnerability in Windows MSHTML Platform can be exploited remotely to spoof user interface.
12. An elevation of privilege vulnerability in Windows Kerberos can be exploited remotely to gain privileges.
13. A security feature bypass vulnerability in Windows Security Zone Mapping can be exploited remotely to bypass security restrictions.
14. An elevation of privilege vulnerability in Windows Storage can be exploited remotely to gain privileges.
15. A denial of service vulnerability in Windows Hyper-V can be exploited remotely to cause denial of service.
16. A spoofing vulnerability in Windows Remote Desktop Licensing Service can be exploited remotely to spoof user interface.
17. A security feature bypass vulnerability in Windows Mark of the Web can be exploited remotely to bypass security restrictions.
18. An information disclosure vulnerability in Windows Remote Desktop Licensing Service can be exploited remotely to obtain sensitive information.
19. A remote code execution vulnerability in Windows TCP/IP can be exploited remotely to execute arbitrary code.
20. A denial of service vulnerability in Windows Standards-Based Storage Management Service can be exploited remotely to cause denial of service.
21. An elevation of privilege vulnerability in Windows Setup and Deployment can be exploited remotely to gain privileges.
22. An elevation of privilege vulnerability in Kernel Streaming WOW Thunk Service Driver can be exploited remotely to gain privileges.
23. A denial of service vulnerability in Windows Remote Desktop Licensing Service can be exploited remotely to cause denial of service.
24. An information disclosure vulnerability in Microsoft AllJoyn API can be exploited remotely to obtain sensitive information.
25. A remote code execution vulnerability in Windows Network Address Translation (NAT) can be exploited remotely to execute arbitrary code.
26. A remote code execution vulnerability in Microsoft Management Console can be exploited remotely to execute arbitrary code.
27. A denial of service vulnerability in DHCP Server Service can be exploited remotely to cause denial of service.
28. An elevation of privilege vulnerability in Windows Remote Access Connection Manager can be exploited remotely to gain privileges.
29. An information disclosure vulnerability in Windows Kernel-Mode Driver can be exploited remotely to obtain sensitive information.
30. A remote code execution vulnerability in Microsoft Windows Update can be exploited remotely to execute arbitrary code.
31. An information disclosure vulnerability in Windows Networking can be exploited remotely to obtain sensitive information.

Original advisories

CVE-2024-38252

CVE-2024-43454

CVE-2024-38260

CVE-2024-38247

CVE-2024-38046

CVE-2024-38253

CVE-2024-43495

CVE-2024-38014

CVE-2024-38254

CVE-2024-38242

CVE-2024-38246

CVE-2024-38233

CVE-2024-43461

CVE-2024-38241

CVE-2024-38239

CVE-2024-30073

CVE-2024-38248

CVE-2024-38243

CVE-2024-38235

CVE-2024-43455

CVE-2024-38217

CVE-2024-38258

CVE-2024-38045

CVE-2024-21416

CVE-2024-43467

CVE-2024-38250

CVE-2024-38238

CVE-2024-38230

CVE-2024-43457

CVE-2024-38245

CVE-2024-38237

CVE-2024-38244

CVE-2024-38231

CVE-2024-38257

CVE-2024-38119

CVE-2024-43487

CVE-2024-38259

CVE-2024-38236

CVE-2024-38240

CVE-2024-38263

CVE-2024-38256

CVE-2024-38232

CVE-2024-38249

CVE-2024-43491

CVE-2024-38234

CVE-2024-43458

Exploitation

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

Microsoft-Windows

Microsoft-Windows-Server

Microsoft-Windows-10

Microsoft-Windows-Server-2016

Microsoft-Windows-Server-2019

Microsoft-Windows-11

Microsoft-Windows-Server-2022

CVE list

CVE-2024-38250 critical

CVE-2024-43454 high

CVE-2024-38260 critical

CVE-2024-38247 critical

CVE-2024-38230 high

CVE-2024-38245 critical

CVE-2024-38231 high

CVE-2024-38014 critical

CVE-2024-43487 high

CVE-2024-43461 critical

CVE-2024-38236 critical

CVE-2024-38240 critical

CVE-2024-38239 high

CVE-2024-38263 critical

CVE-2024-30073 critical

CVE-2024-38256 high

CVE-2024-43455 critical

CVE-2024-38217 high

CVE-2024-38249 critical

CVE-2024-38258 high

CVE-2024-43467 critical

CVE-2024-38234 high

CVE-2024-38252 critical

CVE-2024-38046 critical

CVE-2024-38253 critical

CVE-2024-43495 high

CVE-2024-38254 high

CVE-2024-38242 critical

CVE-2024-38246 high

CVE-2024-38233 critical

CVE-2024-38241 critical

CVE-2024-38248 high

CVE-2024-38243 critical

CVE-2024-38235 high

CVE-2024-38045 critical

CVE-2024-21416 critical

CVE-2024-38238 critical

CVE-2024-43457 critical

CVE-2024-38237 critical

CVE-2024-38244 critical

CVE-2024-38257 critical

CVE-2024-38119 critical

CVE-2024-38259 critical

CVE-2024-38232 critical

CVE-2024-43491 critical

CVE-2024-43458 critical

KB list

5040442

5040438

5042880

5043076

5043083

5043080

5043050

5043051

5042881

5043064

5043055

5043067

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Impacts

• ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

• OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

• DoS

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

• SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

• PE

Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.

• SUI

Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.

Affected Products

• Windows 11 Version 23H2 for x64-based SystemsWindows 10 Version 22H2 for x64-based SystemsWindows Server 2022 (Server Core installation)Windows 10 Version 21H2 for ARM64-based SystemsWindows Server 2019 (Server Core installation)Windows 11 Version 24H2 for x64-based SystemsWindows Server 2022Windows Server 2022, 23H2 Edition (Server Core installation)Windows Server 2016Windows 11 Version 23H2 for ARM64-based SystemsWindows 11 Version 22H2 for ARM64-based SystemsWindows 10 Version 1809 for 32-bit SystemsWindows 10 Version 21H2 for x64-based SystemsWindows Server 2016 (Server Core installation)Windows 11 Version 24H2 for ARM64-based SystemsWindows 10 for 32-bit SystemsWindows 10 Version 21H2 for 32-bit SystemsWindows 10 Version 22H2 for 32-bit SystemsWindows 10 Version 1809 for ARM64-based SystemsWindows 11 Version 22H2 for x64-based SystemsWindows Server 2019Windows 10 Version 1607 for 32-bit SystemsWindows 10 Version 1809 for x64-based SystemsWindows 10 Version 1607 for x64-based SystemsWindows 11 version 21H2 for x64-based SystemsWindows 10 Version 22H2 for ARM64-based SystemsWindows 10 for x64-based SystemsWindows 11 version 21H2 for ARM64-based Systems