Content Modification: Updates for Kev Content published 2024-09-16 (6)

Total New Fixlets: 8
Total Updated Fixlets: 1711
Total Fixlets in Site: 2577
Total CVEs Covered: 743
Release Date: 2024-09-16

Updated Fixlets (most updates are minor data additions done by CISA that are refected here) :

12460    Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability - Windows Server 2008 R2 SP1 
4270    Microsoft Internet Explorer Privilege Escalation Vulnerability - Windows Server 2008 SP2 
28850    Microsoft Windows SmartScreen Security Feature Bypass Vulnerability - Windows 10 
12470    Microsoft SMBv1 Remote Code Execution Vulnerability - Windows Server 2008 R2 SP1 
4280    Microsoft Windows Local Security Authority (LSA) Spoofing Vulnerability - Windows Server 2008 SP2 
28860    Microsoft Windows Internet Shortcut Files Security Feature Bypass Vulnerability - Windows 10 
20670    Adobe Flash Player Heap-Based Buffer Overflow Vulnerability - Any Version of MacOS 
12480    Microsoft Windows Win32k Privilege Escalation Vulnerability - Windows Server 2008 R2 SP1 
4290    Microsoft Remote Desktop Services Remote Code Execution Vulnerability - Windows Server 2008 SP2 
28870    Microsoft Windows SmartScreen Security Feature Bypass Vulnerability - Windows Server 2022 
20680    Adobe Flash Player and AIR Integer Overflow Vulnerability - Any Version of MacOS 
4300    Microsoft Internet Explorer Use-After-Free Vulnerability - Windows Server 2008 SP2 
28880    Microsoft Windows Internet Shortcut Files Security Feature Bypass Vulnerability - Windows Server 2022 
20690    Adobe Flash Player Type Confusion Vulnerability - Any Version of MacOS 
12500    Microsoft Active Directory Domain Services Privilege Escalation Vulnerability - Windows Server 2008 R2 SP1 
4310    Microsoft Internet Explorer Remote Code Execution Vulnerability - Windows Server 2008 SP2 
28890    Linux Kernel Race Condition Vulnerability - RHEL 
12510    Microsoft Windows Universal Plug and Play (UPnP) Service Privilege Escalation Vulnerability - Windows Server 2008 R2 SP1 
4320    Microsoft Windows Kernel Privilege Escalation Vulnerability - Windows Server 2008 SP2 
28900    Linux Kernel Privilege Escalation Vulnerability - RHEL 
20710    Adobe Flash Player Arbitrary Code Execution Vulnerability - Any Version of MacOS 
12520    Microsoft Internet Explorer Use-After-Free Vulnerability - Windows Server 2008 R2 SP1 
4330    Microsoft Windows Graphics Device Interface (GDI) Privilege Escalation Vulnerability - Windows Server 2008 SP2 
28910    Red Hat Polkit Out-of-Bounds Read and Write Vulnerability - RHEL 
12530    Microsoft Windows Kernel Privilege Escalation Vulnerability - Windows Server 2008 R2 SP1 
28920    Sudo Heap-Based Buffer Overflow Vulnerability - RHEL 
12540    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2008 R2 SP1 
4350    Microsoft Kerberos Key Distribution Center (KDC) Privilege Escalation Vulnerability - Windows Server 2008 SP2 
28930    Linux Kernel Use-After-Free Vulnerability - RHEL 
12550    Microsoft Windows User Profile Service Privilege Escalation Vulnerability - Windows Server 2008 R2 SP1 
4360    Microsoft MSHTML Remote Code Execution Vulnerability - Windows Server 2008 SP2 
28940    Linux Kernel Improper Input Validation Vulnerability - RHEL 
20750    Adobe Reader and Acrobat Arbitrary Integer Overflow Vulnerability - Any Version of MacOS 
12560    Microsoft Internet Explorer Use-After-Free Vulnerability - Windows Server 2008 R2 SP1 
4370    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows Server 2008 SP2 
28950    Linux Kernel Privilege Escalation Vulnerability - RHEL 
4380    Microsoft Windows Client Server Runtime Subsystem (CSRSS) Privilege Escalation Vulnerability - Windows Server 2008 SP2 
28960    Linux Kernel Race Condition Vulnerability - RHEL 
4390    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2008 SP2 
28970    Linux Kernel Integer Overflow Vulnerability - RHEL 
20780    Adobe Flash Player Memory Corruption Vulnerability - Any Version of MacOS 
4400    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2008 SP2 
28980    Linux Kernel Race Condition Vulnerability - SLE 
12600    Kentico Xperience Deserialization of Untrusted Data Vulnerability - Any Version of Windows 
4420    Microsoft Internet Explorer Remote Code Execution Vulnerability - Windows Server 2008 SP2 
20810    Adobe Reader and Adobe Acrobat Stack-Based Buffer Overflow Vulnerability - Any Version of MacOS 
4430    Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability - Windows Server 2008 SP2 
29010    Sudo Heap-Based Buffer Overflow Vulnerability - SLE 
4440    Microsoft Windows User Profile Service Privilege Escalation Vulnerability - Windows Server 2008 SP2 
4460    Microsoft Windows LSA Spoofing Vulnerability - Windows Server 2008 SP2 
4470    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2008 SP2 
4490    Microsoft Graphics Component Memory Corruption Vulnerability - Windows Server 2008 SP2 
12690    Docker Desktop Community Edition Privilege Escalation Vulnerability - Any Version of Windows 
20890    Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability - Any Version of MacOS 
20900    Microsoft Silverlight Double Dereference Vulnerability - Any Version of MacOS 
4530    Microsoft Graphics Device Interface (GDI) Privilege Escalation Vulnerability - Windows Server 2008 SP2 
4540    Microsoft SMBv1 Remote Code Execution Vulnerability - Windows Server 2008 SP2 
4550    Microsoft Windows Graphics Device Interface (GDI) Remote Code Execution Vulnerability - Windows Server 2008 SP2 
12750    Veeam Backup & Replication Remote Code Execution Vulnerability - Any Version of Windows 
4560    Microsoft Active Directory Domain Services Privilege Escalation Vulnerability - Windows Server 2008 SP2 
20950    Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability - Any Version of MacOS 
12760    Adobe Acrobat and Reader Sandbox Bypass Vulnerability - Any Version of Windows 
4570    Microsoft Windows SMBv1 Information Disclosure Vulnerability - Windows Server 2008 SP2 
29170    Microsoft Windows SmartScreen Security Feature Bypass Vulnerability - Windows 11 
20980    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows 10 
29180    Microsoft Windows Internet Shortcut Files Security Feature Bypass Vulnerability - Windows 11 
20990    Microsoft Edge and Internet Explorer Memory Corruption Vulnerability - Windows 10 
4610    Microsoft Windows Print Spooler Privilege Escalation Vulnerability - Windows Server 2008 SP2 
29190    Red Hat Polkit Incorrect Authorization Vulnerability - Ubuntu 
21000    Microsoft .NET Framework Remote Code Execution Vulnerability - Windows 10 
21010    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows 10 
4630    Microsoft SMBv1 Server Remote Code Execution Vulnerability - Windows Server 2008 SP2 
29210    GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability - Ubuntu 
21020    Microsoft Windows Certificate Dialog Privilege Escalation Vulnerability - Windows 10 
4640    Microsoft Windows COM+ Event System Service Privilege Escalation Vulnerability - Windows Server 2008 SP2 
21030    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2008 SP2 
21040    Microsoft Edge and Internet Explorer Memory Corruption Vulnerability - Windows Server 2008 SP2 
4660    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows Server 2008 SP2 
29240    GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability - Debian 
21050    Microsoft .NET Framework Remote Code Execution Vulnerability - Windows Server 2008 SP2 
4670    Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability - Windows Server 2008 SP2 
29250    Microsoft Exchange Server Privilege Escalation Vulnerability - Exchange Server 2019 
21060    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows Server 2008 SP2 
29270    Red Hat Polkit Incorrect Authorization Vulnerability - SLE 
21080    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2008 R2 SP1 
4700    Microsoft Windows Spoofing Vulnerability - Windows Server 2008 SP2 
21090    Microsoft Edge and Internet Explorer Memory Corruption Vulnerability - Windows Server 2008 R2 SP1 
4710    Microsoft Windows Remote Code Execution Vulnerability - Windows Server 2008 SP2 
21100    Microsoft .NET Framework Remote Code Execution Vulnerability - Windows Server 2008 R2 SP1 
21130    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows 7 SP1 
21140    Microsoft Office and WordPad Remote Code Execution Vulnerability - Windows 7 SP1 
29340    Red Hat Polkit Incorrect Authorization Vulnerability - RHEL 
21150    Microsoft Edge and Internet Explorer Memory Corruption Vulnerability - Windows 7 SP1 
4770    Microsoft ATM Font Driver Privilege Escalation Vulnerability - Windows Server 2008 SP2 
21160    Microsoft .NET Framework Remote Code Execution Vulnerability - Windows 7 SP1 
29360    GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability - RHEL 
29370    Linux Kernel Privilege Escalation Vulnerability - Ubuntu 
21180    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows 8.1 
29380    Linux Kernel Privilege Escalation Vulnerability - Debian 
21190    Microsoft Edge and Internet Explorer Memory Corruption Vulnerability - Windows 8.1 
4810    Microsoft Internet Explorer Messaging API Information Disclosure Vulnerability - Windows Server 2008 SP2 
21200    Microsoft .NET Framework Remote Code Execution Vulnerability - Windows 8.1 
29410    Linux Kernel Privilege Escalation Vulnerability - RHEL 
21220    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2019 
4840    Microsoft IME Japanese Privilege Escalation Vulnerability - Windows Server 2008 SP2 
29420    ConnectWise ScreenConnect Authentication Bypass Vulnerability - Any Version of Windows 
21230    Microsoft Edge and Internet Explorer Memory Corruption Vulnerability - Windows Server 2019 
4850    Microsoft Windows MSHTML Platform Remote Code Execution Vulnerability - Windows Server 2008 SP2 
29430    Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability - Windows Server 2016 
21240    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows Server 2019 
4860    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2008 SP2 
29440    Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability - Windows Server 2019 
21250    Microsoft Windows Certificate Dialog Privilege Escalation Vulnerability - Windows Server 2019 
4870    Microsoft Internet Explorer Information Disclosure Vulnerability - Windows Server 2008 SP2 
29450    Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability - Windows 10 
21260    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2016 
4880    Microsoft Windows Background Intelligent Transfer Service (BITS) Improper Privilege Management Vulnerability - Windows Server 2008 SP2 
29460    Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability - Windows Server 2022 
21270    Microsoft Edge and Internet Explorer Memory Corruption Vulnerability - Windows Server 2016 
4890    Microsoft Windows Privilege Escalation Vulnerability - Windows Server 2008 SP2 
29470    Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability - Windows 11 
21280    Microsoft .NET Framework Remote Code Execution Vulnerability - Windows Server 2016 
4900    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2008 SP2 
29480    Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability - Windows Server 2019 
21290    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows Server 2016 
4910    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2008 SP2 
29490    Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability - Windows 10 
21300    Microsoft Windows Certificate Dialog Privilege Escalation Vulnerability - Windows Server 2016 
4920    Microsoft Windows Print Spooler Privilege Escalation Vulnerability - Windows Server 2008 SP2 
21310    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2012 R2 
4930    Microsoft Windows Installer Privilege Escalation Vulnerability - Windows Server 2008 SP2 
21320    Microsoft Edge and Internet Explorer Memory Corruption Vulnerability - Windows Server 2012 R2 
4940    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2008 SP2 
29520    Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability - Windows Server 2022 
21330    Microsoft .NET Framework Remote Code Execution Vulnerability - Windows Server 2012 R2 
4950    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2008 SP2 
29530    Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability - Windows 11 
21340    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows Server 2012 R2 
29540    JetBrains TeamCity Authentication Bypass Vulnerability - Any Version of Windows 
4970    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows Server 2008 SP2 
21360    Microsoft Internet Explorer Memory Corruption Vulnerability - Windows Server 2012 
4980    Microsoft Windows User Profile Service Privilege Escalation Vulnerability - Windows Server 2008 SP2 
21370    Microsoft Office and WordPad Remote Code Execution Vulnerability - Windows Server 2012 
4990    Microsoft Windows Server Message Block (SMBv1) Remote Code Execution Vulnerability - Windows Server 2008 SP2 
21380    Microsoft Edge and Internet Explorer Memory Corruption Vulnerability - Windows Server 2012 
5000    Microsoft Windows NTFS Privilege Escalation Vulnerability - Windows Server 2008 SP2 
21390    Microsoft .NET Framework Remote Code Execution Vulnerability - Windows Server 2012 
13200    Apple macOS Out-of-Bounds Write Vulnerability - Any Version of MacOS 
21400    Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability - Windows Server 2012 
5030    Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability - Windows Server 2008 SP2 
21420    Microsoft Exchange Server Validation Key Remote Code Execution Vulnerability - Exchange Server 2010 
5040    Microsoft Windows SMB Remote Code Execution Vulnerability - Windows Server 2008 SP2 
21430    Microsoft Exchange Server Remote Code Execution Vulnerability - Exchange Server 2010 
5050    Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability - Windows Server 2008 SP2 
29630    Android Pixel Information Disclosure Vulnerability - Android with Major Version & Service Pack 
21440    Microsoft Exchange Server Remote Code Execution Vulnerability - Exchange Server 2016 
5060    Microsoft Internet Explorer ASLR Bypass Vulnerability - Windows Server 2008 SP2 
29640    Android Pixel Privilege Escalation Vulnerability - Any Current Service Pack of Android 
21450    Microsoft Exchange Server Remote Code Execution Vulnerability - Exchange Server 2016 
29650    Android Pixel Information Disclosure Vulnerability - Any Current Service Pack of Android 
21460    Microsoft Exchange Server Security Feature Bypass Vulnerability - Exchange Server 2016 
29660    Elasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability - Any Version of Windows 
21470    Microsoft Exchange Server Validation Key Remote Code Execution Vulnerability - Exchange Server 2016 
5090    Microsoft Windows CLFS Driver Privilege Escalation Vulnerability - Windows Server 2008 SP2 
29670    Elasticsearch Remote Code Execution Vulnerability - Any Version of Windows 
21480    Microsoft Exchange Server Privilege Escalation Vulnerability - Exchange Server 2016 
5100    Microsoft Win32k Privilege Escalation Vulnerability - Windows Server 2008 SP2 
29680    Elasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability - Any Version of Linux 
21490    Microsoft Exchange Server Remote Code Execution Vulnerability - Exchange Server 2016 
5110    Microsoft Windows Remote Code Execution Vulnerability - Windows Server 2008 SP2