Microsoft December 2022 Patch Tuesday

December’s Patch Tuesday was released to fix security flaws in some products such as .NET Framework, Azure, Client Server Run-time Subsystem (CSRSS), Microsoft Bluetooth Driver, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Graphics Component, Microsoft Office, Microsoft Office OneNote, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Windows Codecs Library, Windows Hyper-V, Windows Certificates, Windows DirectX, Windows Error Reporting, Windows HTTP Print Provider, Windows Kernel, Windows PowerShell, Windows Print Spooler Components, Windows Projected File System, Windows Secure Socket Tunneling Protocol (SSTP), Windows SmartScreen, Windows Subsystem for Linux and Windows Terminal.

The Actively Exploited Zero-Day Vulnerability “Windows SmartScreen Security Feature Bypass” (CVE-2022-44698):

It could allow the remote attacker to bypass security restrictions vis persuading the victim to open specially-crafted content due to a flaw in the SmartScreen component. The vulnerability was exploited in numerous malware distribution campaigns, spreading the QBot trojan, Magniber ransomware, and others.

The Publicly Disclosed Zero-Day Vulnerability “DirectX Graphics Kernel Elevation of Privilege” (CVE-2022-44710):

It could allow the authenticated attacker to gain elevated privileges on the system via executing a specially-crafted program due to a flaw in the DirectX Graphics Kernel component.

Samples of the addressed vulnerabilities:

1. Microsoft .NET Framework code execution (CVE-2022-41089):

• CVSS: 8.8
• Attack Vector: Network
• Attack Complexity: Low
• Privileges Required: None
• User Interaction: Required
• Consequences: Gain Access

2. Microsoft SharePoint Server code execution (CVE-2022-44690):

• CVSS: 8.8
• Attack Vector: Network
• Attack Complexity: Low
• Privileges Required: Low
• User Interaction: None
• Consequences: Gain Access