Test ID:	1.3.6.1.4.1.25623.1.0.832062
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Windows Multiple Vulnerabilities (KB5026361)
Summary:	This host is missing an important security; update according to Microsoft KB5026361
Description:	Summary: This host is missing an important security update according to Microsoft KB5026361 Vulnerability Insight: Multiple flaws exist due to: - A Remote Code Execution Vulnerability in Windows OLE. - An Elevation of Privilege Vulnerability in Windows Bluetooth Driver. - An Information Disclosure Vulnerability in Windows iSCSI Target Service. For more information about the vulnerabilities refer to Reference links. Vulnerability Impact: Successful exploitation will allow an attacker to elevate privileges, execute arbitrary commands, bypass security feature, disclose information and conduct DoS attacks on an affected system. Affected Software/OS: - Microsoft Windows 10 Version 20H2 for x64-based Systems - Microsoft Windows 10 Version 20H2 for 32-bit Systems - Microsoft Windows 10 Version 21H2 for 32-bit Systems - Microsoft Windows 10 Version 21H2 for x64-based Systems - Microsoft Windows 10 Version 22H2 for x64-based Systems - Microsoft Windows 10 Version 22H2 for 32-bit Systems Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-24949 Windows Kernel Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24949 Common Vulnerability Exposure (CVE) ID: CVE-2023-24947 Windows Bluetooth Driver Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24947 Common Vulnerability Exposure (CVE) ID: CVE-2023-24903 Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24903 Common Vulnerability Exposure (CVE) ID: CVE-2023-29325 Windows OLE Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29325 Common Vulnerability Exposure (CVE) ID: CVE-2023-29324 Windows MSHTML Platform Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29324 Common Vulnerability Exposure (CVE) ID: CVE-2023-24948 Windows Bluetooth Driver Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24948 Common Vulnerability Exposure (CVE) ID: CVE-2023-24946 Windows Backup Service Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24946 Common Vulnerability Exposure (CVE) ID: CVE-2023-24945 Windows iSCSI Target Service Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24945 Common Vulnerability Exposure (CVE) ID: CVE-2023-24944 Windows Bluetooth Driver Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24944 Common Vulnerability Exposure (CVE) ID: CVE-2023-24905 Remote Desktop Client Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24905 Common Vulnerability Exposure (CVE) ID: CVE-2023-24943 Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24943 Common Vulnerability Exposure (CVE) ID: CVE-2023-24942 Remote Procedure Call Runtime Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24942 Common Vulnerability Exposure (CVE) ID: CVE-2023-24901 Windows NFS Portmapper Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24901 Common Vulnerability Exposure (CVE) ID: CVE-2023-24940 Windows Pragmatic General Multicast (PGM) Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24940 Common Vulnerability Exposure (CVE) ID: CVE-2023-24900 Windows NTLM Security Support Provider Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24900 Common Vulnerability Exposure (CVE) ID: CVE-2023-24939 Server for NFS Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24939 Common Vulnerability Exposure (CVE) ID: CVE-2023-28283 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28283 Common Vulnerability Exposure (CVE) ID: CVE-2023-28251 Windows Driver Revocation List Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28251 Common Vulnerability Exposure (CVE) ID: CVE-2023-24932 Secure Boot Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24932
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.