In these attacks, the attacker had already gained administrative privileges on compromised systems prior to use of the drivers. Summary: Microsoft was informed that drivers certified by Microsoft’s Windows Hardware Developer Program were being used maliciously in post-exploitation activity. For additional information see “Microsoft Security Advisories” and “Known Issues” below.įYI – No more monthly updates for Windows 10 Version 21H1 “May 2021 Update” (OS Build 19043)ĪDV220005 | Guidance on Microsoft Signed Drivers Being Used Maliciously (Published: | Last Updated:) While few admins have experienced issues, before patching critical systems, you should make sure the UEFI bios is on the latest version and have Bitlocker recovery key handy. Last month Microsoft released a new version and included Windows 11. KB5012170 was originally released in August of 2022. For these reasons we are releasing KB5012170 this month. Also we’ve only seen a few reports of Bitlocker asking for a recovery key and sparse reports of the BSOD error 0x800f0922.
From our experience, if they don’t fix something within the first 30 days, it doesn’t get fixed. We deferred it in December hoping Microsoft would correct the issues but they have not. There were reports of issues with this update causing BSOD and interfering with Bitlocker encryption. KB5012170 is a security update classified as “Critical (High Priority)” and Microsoft posted the vulnerability in ADV200011. Two Microsoft Exchange vulnerabilities are also patched this month. Microsoft SharePoint Server (CVE-2023-21743) has a Critical security bypass flaw patched. Most concerning are a Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability (CVE-2023-21674) and Windows Workstation Service Elevation of Privilege Vulnerability (CVE-2023-21549).
This month brings 98 updates with 11 classified as critical. This month Microsoft released patches for 98 vulnerabilities with 11 rated “Critical” in severity.Īll patches will be approved in our patch policy including last month’s deferred KB5012170.
0 kommentar(er)
