91猫先生

移到主要内容

【漏洞预警】微软释出115年3月份安全性更新

轉發 國家資安資訊分享與分析中心 資安訊息警訊 NISAC-200-202603-00000009
微软释出1153月份安全性更新,共修补包含SQL ServerMicrosoft Office SharePointActive Directory Domain Services等共84个漏洞,其中包含16CVSS8.8分之高风险漏洞,请儘速确认并进行修补。
情资分享等级: WHITE(情资内容為可公开揭露之资讯)
此讯息仅发送到「区县市网路中心」,烦请贵单位协助转发与通知辖下各单位知悉
[
影响平台:]
影响软体与服务项目如下:
Active Directory Domain Services
ASP.NET Core
Azure Arc
Azure Compute Gallery
Azure Entra ID
Azure IoT Explorer
Azure Linux Virtual Machines
Azure MCP Server
Azure Portal Windows Admin Center
Azure Windows Virtual Machine Agent
Broadcast DVR
Connected Devices Platform Service (Cdpsvc)
GitHub Repo: zero-shot-scfoundation
Microsoft Authenticator
Microsoft Brokering File System
Microsoft Devices Pricing Program
Microsoft Graphics Component
Microsoft Office
Microsoft Office Excel
Microsoft Office SharePoint
.NET
Payment Orchestrator Service
Push Message Routing Service
Role: Windows Hyper-V
SQL Server
System Center Operations Manager
Windows Accessibility Infrastructure (ATBroker.exe)
Windows Ancillary Function Driver for WinSock
Windows App Installer
Windows Authentication Methods
Windows Bluetooth RFCOM Protocol Driver
Windows Device Association Service
Windows DWM Core Library
Windows Extensible File Allocation
Windows File Server
Windows GDI
Windows GDI+
Windows Kerberos
Windows Kernel
Windows MapUrlToZone
Windows Mobile Broadband
Windows NTFS
Windows Performance Counters
Windows Print Spooler Components
Windows Projected File System
Windows Resilient File System (ReFS)
Windows Routing and Remote Access Service (RRAS)
Windows Shell Link Processing
Windows SMB Server
Windows System Image Manager
Windows Telephony Service
Windows Universal Disk Format File System Driver (UDFS)
Windows Win32K
Winlogon
[
建议措施:]
目前微軟官方已針對弱點釋出修復版本,請儘速完成更新,或聯絡系統維護廠商, 詳細資訊參考微軟官方連結: 
[
参考资料:]
1. 
(
此通报仅在於告知相关资讯,并非為资安事件),如果您对此通报的内容有疑问或有关於此事件的建议,欢迎与我们连络。
教育机构资安通报应变小组
网址:
专线电话:07-5250211
网路电话:98400000
E-Mail
service@cert.tanet.edu.tw