Content Modification: Updates for Kev Content published 2024-09-16 (2)

Total New Fixlets: 8
Total Updated Fixlets: 1711
Total Fixlets in Site: 2577
Total CVEs Covered: 743
Release Date: 2024-09-16

Updated Fixlets (most updates are minor data additions done by CISA that are refected here) :

9250    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows Server 2012 R2 
25640    Microsoft Win32k Privilege Escalation Vulnerability - Windows 8.1 
25650    Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability - Windows Server 2019 
9270    Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability - Windows Server 2012 R2 
25660    Microsoft Windows Error Reporting Service Privilege Escalation Vulnerability - Windows Server 2019 
25670    Microsoft Windows Defender SmartScreen Security Feature Bypass Vulnerability - Windows Server 2019 
25680    Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability - Windows Server 2016 
1110    Microsoft Internet Explorer Privilege Escalation Vulnerability - Windows 8.1 
25690    Microsoft Windows Error Reporting Service Privilege Escalation Vulnerability - Windows Server 2016 
9310    Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability - Windows Server 2012 R2 
1120    Microsoft Windows Print Spooler Remote Code Execution Vulnerability - Windows 8.1 
25700    Microsoft Windows Defender SmartScreen Security Feature Bypass Vulnerability - Windows Server 2016 
17510    Adobe Reader and Acrobat Memory Corruption Vulnerability - Any Version of Linux 
9320    Microsoft Windows Remote Code Execution Vulnerability - Windows Server 2012 R2 
1130    Microsoft Windows Object Linking & Embedding (OLE) Remote Code Execution Vulnerability - Windows 8.1 
25710    Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability - Windows Server 2012 R2 
17520    Apache CouchDB Insecure Default Initialization of Resource Vulnerability - Any Version of Linux 
25720    Microsoft Windows Error Reporting Service Privilege Escalation Vulnerability - Windows Server 2012 R2 
25730    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2012 R2 
1160    Microsoft Internet Explorer Type Confusion Vulnerability - Windows 8.1 
25740    Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability - Windows Server 2012 
1170    Microsoft Win32k Privilege Escalation Vulnerability - Windows 8.1 
25750    Microsoft Windows Error Reporting Service Privilege Escalation Vulnerability - Windows Server 2012 
17560    Oracle JRE Sandbox Bypass Vulnerability - Any Version of Linux 
1180    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows 8.1 
25760    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2012 
1190    Microsoft Windows Code Injection Vulnerability - Windows 8.1 
25770    Microsoft Win32k Privilege Escalation Vulnerability - Windows Vista SP2 
9390    Microsoft ATM Font Driver Privilege Escalation Vulnerability - Windows Server 2012 R2 
1200    Microsoft Internet Explorer Information Disclosure Vulnerability - Windows 8.1 
1210    Microsoft Internet Explorer and Edge Information Disclosure Vulnerability - Windows 8.1 
1220    Microsoft Internet Explorer Privilege Escalation Vulnerability - Windows 8.1 
17610    Veeam Backup & Replication Remote Code Execution Vulnerability - Any Version of Linux 
1230    Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability - Windows 8.1 
1240    Microsoft Windows Kernel Privilege Escalation Vulnerability - Windows 8.1 
17630    Adobe Flash Player Unspecified Vulnerability - Any Version of Linux 
9440    Microsoft Windows MSHTML Platform Remote Code Execution Vulnerability - Windows Server 2012 R2 
1250    Microsoft Windows Scripting Languages Remote Code Execution Vulnerability - Windows 8.1 
17640    Adobe Flash Player Use-After-Free Vulnerability - Any Version of Linux 
9450    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2012 R2 
1260    Microsoft Windows CSRSS Security Feature Bypass Vulnerability - Windows 8.1 
17650    Mozilla Firefox Security Feature Bypass Vulnerability - Any Version of Linux 
9460    Microsoft Active Directory Domain Services Privilege Escalation Vulnerability - Windows Server 2012 R2 
1270    Microsoft Internet Explorer Use-After-Free Vulnerability - Windows 8.1 
9470    Microsoft Internet Explorer Information Disclosure Vulnerability - Windows Server 2012 R2 
1280    Microsoft Internet Explorer Remote Code Execution Vulnerability - Windows 8.1 
1290    Microsoft Windows Kernel Privilege Escalation Vulnerability - Windows 8.1 
17680    TIBCO JasperReports Server Information Disclosure Vulnerability - Any Version of Linux 
9490    Microsoft Windows Background Intelligent Transfer Service (BITS) Improper Privilege Management Vulnerability - Windows Server 2012 R2 
1300    Microsoft Windows Graphics Device Interface (GDI) Privilege Escalation Vulnerability - Windows 8.1 
9500    Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability - Windows Server 2012 R2 
9510    Microsoft Windows Privilege Escalation Vulnerability - Windows Server 2012 R2 
1320    Microsoft Kerberos Key Distribution Center (KDC) Privilege Escalation Vulnerability - Windows 8.1 
9520    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2012 R2 
1330    Microsoft MSHTML Remote Code Execution Vulnerability - Windows 8.1 
17720    Linux Kernel Privilege Escalation Vulnerability - Any Version of Linux 
9530    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2012 R2 
9540    Microsoft Windows Print Spooler Privilege Escalation Vulnerability - Windows Server 2012 R2 
1350    Microsoft Windows Scripting Engine Memory Corruption Vulnerability - Windows 8.1 
17740    Mozilla Firefox and Thunderbird Denial-of-Service Vulnerability - Any Version of Linux 
9550    Microsoft Windows Installer Privilege Escalation Vulnerability - Windows Server 2012 R2 
1360    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows 8.1 
9560    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2012 R2 
1370    Microsoft Windows Client Server Runtime Subsystem (CSRSS) Privilege Escalation Vulnerability - Windows 8.1 
17760    Adobe Acrobat and Reader Universal 3D Memory Corruption Vulnerability - Any Version of Linux 
9570    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2012 R2 
1380    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows 8.1 
9580    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows Server 2012 R2 
1390    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows 8.1 
9590    Microsoft Windows User Profile Service Privilege Escalation Vulnerability - Windows Server 2012 R2 
9600    Microsoft Windows Server Message Block (SMBv1) Remote Code Execution Vulnerability - Windows Server 2012 R2 
1410    Microsoft Windows User Profile Service Privilege Escalation Vulnerability - Windows 8.1 
9610    Microsoft Windows NTFS Privilege Escalation Vulnerability - Windows Server 2012 R2 
1420    Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability - Windows 8.1 
17810    OpenSMTPD Remote Code Execution Vulnerability - Any Version of Linux 
1440    Microsoft Windows LSA Spoofing Vulnerability - Windows 8.1 
1450    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows 8.1 
17840    Atlassian Bitbucket Server and Data Center Command Injection Vulnerability - Any Version of Linux 
9650    Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability - Windows Server 2012 R2 
17850    Mozilla Firefox Information Disclosure Vulnerability - Any Version of Linux 
9660    Microsoft Windows SMB Remote Code Execution Vulnerability - Windows Server 2012 R2 
9670    Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability - Windows Server 2012 R2 
17870    Adobe Acrobat and Reader Stack-Based Buffer Overflow Vulnerability - Any Version of Linux 
9680    Microsoft Internet Explorer ASLR Bypass Vulnerability - Windows Server 2012 R2 
1490    Microsoft Edge and Internet Explorer Type Confusion Vulnerability - Windows 8.1 
1500    Microsoft Graphics Device Interface (GDI) Privilege Escalation Vulnerability - Windows 8.1 
9700    Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability - Windows Server 2012 R2 
1510    Microsoft SMBv1 Remote Code Execution Vulnerability - Windows 8.1 
1520    Microsoft Windows Graphics Device Interface (GDI) Remote Code Execution Vulnerability - Windows 8.1 
9720    Microsoft Windows CLFS Driver Privilege Escalation Vulnerability - Windows Server 2012 R2 
1530    Microsoft Internet Explorer Privilege Escalation Vulnerability - Windows 8.1 
9730    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2012 R2 
1540    Microsoft Windows SMBv1 Information Disclosure Vulnerability - Windows 8.1 
9740    Microsoft Windows Remote Code Execution Vulnerability - Windows Server 2012 R2 
9750    Microsoft Windows Graphic Component Privilege Escalation Vulnerability - Windows Server 2012 R2 
1580    Microsoft Windows Print Spooler Privilege Escalation Vulnerability - Windows 8.1 
1590    Microsoft WinVerifyTrust function Remote Code Execution - Windows 
9790    Microsoft Windows Advanced Local Procedure Call (ALPC) Privilege Escalation Vulnerability - Windows Server 2012 R2 
1600    Microsoft SMBv1 Server Remote Code Execution Vulnerability - Windows 8.1 
9800    Microsoft Windows Secondary Logon Service Privilege Escalation Vulnerability - Windows Server 2012 R2 
1610    Microsoft Windows COM+ Event System Service Privilege Escalation Vulnerability - Windows 8.1 
9810    Microsoft Windows Kernel Privilege Escalation Vulnerability - Windows Server 2012 R2 
9820    Microsoft XML Core Services Information Disclosure Vulnerability - Windows Server 2012 R2 
18020    Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability - Any Version of Linux 
1640    Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability - Windows 8.1 
9840    Microsoft Windows Kernel Privilege Escalation Vulnerability - Windows Server 2012 R2 
9850    Microsoft Windows TS WebProxy Directory Traversal Vulnerability - Windows Server 2012 R2 
18050    Adobe Acrobat and Reader Universal 3D Remote Code Execution Vulnerability - Any Version of Linux 
9860    Microsoft Windows Kernel Privilege Escalation Vulnerability - Windows Server 2012 R2 
18060    Adobe Reader and Acrobat Arbitrary Code Execution Vulnerability - Any Version of Linux 
9870    Microsoft Windows Open Type Font Remote Code Execution Vulnerability - Windows Server 2012 R2 
1680    Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability - Windows 8.1 
26260    Microsoft Windows Defender SmartScreen Security Feature Bypass Vulnerability - Windows Server 2022 
18070    Oracle Java SE Unspecified Vulnerability - Any Version of Linux 
9880    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2012 R2 
1690    Microsoft Windows Remote Code Execution Vulnerability - Windows 8.1 
26270    Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability - Windows Server 2022 
18080    Oracle JRE Unspecified Vulnerability - Any Version of Linux 
9890    Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability - Windows Server 2012 R2 
26280    Microsoft Windows Error Reporting Service Privilege Escalation Vulnerability - Windows Server 2022 
9900    Microsoft SMBv1 Remote Code Execution Vulnerability - Windows Server 2012 R2 
26290    Microsoft Windows Defender SmartScreen Security Feature Bypass Vulnerability - Windows 11 
9910    Microsoft Windows Win32k Privilege Escalation Vulnerability - Windows Server 2012 R2 
26300    Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability - Windows 11 
18110    Grafana Authentication Bypass Vulnerability - Any Version of Linux 
9920    Microsoft Windows Print Spooler Privilege Escalation Vulnerability - Windows Server 2012 R2 
26310    Microsoft Windows Error Reporting Service Privilege Escalation Vulnerability - Windows 11 
9930    Microsoft Active Directory Domain Services Privilege Escalation Vulnerability - Windows Server 2012 R2 
9940    Microsoft Windows Universal Plug and Play (UPnP) Service Privilege Escalation Vulnerability - Windows Server 2012 R2 
18140    PHP-CGI Query String Parameter Vulnerability - Any Version of Linux 
9950    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2012 R2 
1760    Microsoft ATM Font Driver Privilege Escalation Vulnerability - Windows 8.1 
9960    Microsoft Windows User Profile Service Privilege Escalation Vulnerability - Windows Server 2012 R2 
9970    Microsoft Internet Explorer Use-After-Free Vulnerability - Windows Server 2012 R2 
18180    Adobe Reader Buffer Overflow Vulnerability - Any Version of Linux 
10000    Microsoft Internet Explorer Privilege Escalation Vulnerability - Windows Server 2012 
1810    Microsoft Windows MSHTML Platform Remote Code Execution Vulnerability - Windows 8.1 
26390    Samsung Mobile Devices Memory Corruption Vulnerability - Any Version of Android 
10010    Microsoft Windows Print Spooler Remote Code Execution Vulnerability - Windows Server 2012 
1820    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows 8.1 
18210    Adobe Flash Player Arbitrary Code Execution Vulnerability - Any Version of Linux 
10020    Microsoft Windows Object Linking & Embedding (OLE) Remote Code Execution Vulnerability - Windows Server 2012 
1830    Microsoft Active Directory Domain Services Privilege Escalation Vulnerability - Windows 8.1 
18220    Adobe Acrobat and Reader Use-After-Free Vulnerability - Any Version of Linux 
1840    Microsoft Internet Explorer Information Disclosure Vulnerability - Windows 8.1 
26420    Microsoft .NET Core and Visual Studio Denial-of-Service Vulnerability - Any Version of Windows 
10050    Microsoft Internet Explorer Type Confusion Vulnerability - Windows Server 2012 
1860    Microsoft Windows Background Intelligent Transfer Service (BITS) Improper Privilege Management Vulnerability - Windows 8.1 
10060    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2012 
1870    Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability - Windows 8.1 
26450    Microsoft Windows Search Remote Code Execution Vulnerability - Windows 10 
18260    Adobe Flash Player Use-After-Free Vulnerability - Any Version of Linux 
10070    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2012 
1880    Microsoft Windows Privilege Escalation Vulnerability - Windows 8.1 
10080    Microsoft Windows Code Injection Vulnerability - Windows Server 2012 
1890    Microsoft Win32k Privilege Escalation Vulnerability - Windows 8.1 
26470    Microsoft Windows Search Remote Code Execution Vulnerability - Windows Server 2008 SP2 
10090    Microsoft Internet Explorer Information Disclosure Vulnerability - Windows Server 2012 
1900    Microsoft Win32k Privilege Escalation Vulnerability - Windows 8.1 
10100    Microsoft Internet Explorer and Edge Information Disclosure Vulnerability - Windows Server 2012 
1910    Microsoft Windows Print Spooler Privilege Escalation Vulnerability - Windows 8.1 
26490    Microsoft Windows Search Remote Code Execution Vulnerability - Windows Server 2019 
18300    Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability - Any Version of Linux 
10110    Microsoft Internet Explorer Privilege Escalation Vulnerability - Windows Server 2012 
1920    Microsoft Windows Installer Privilege Escalation Vulnerability - Windows 8.1 
18310    RARLAB UnRAR Directory Traversal Vulnerability - Any Version of Linux 
10120    Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability - Windows Server 2012 
1930    Microsoft Win32k Privilege Escalation Vulnerability - Windows 8.1 
26510    Microsoft Windows Search Remote Code Execution Vulnerability - Windows Server 2016 
10130    Microsoft Windows Scripting Languages Remote Code Execution Vulnerability - Windows Server 2012