PRUEBA AHORA
Patch Tuesday

Microsoft Patch Tuesday – August 2022

8 min. read
09/08/2022
By Esben Dochy
Microsoft-Patch-Tuesday-May-2022

Patch Tuesday is once again upon us. The August 2022 edition of Patch Tuesday brings us 123 fixes, with 17 rated as critical. We’ve listed the most important changes below.

⚡ TL;DR | Go Straight to the August 2022 Patch Tuesday Audit Report

Windows Server 20H2 End-of-Life

Microsoft is ending support for the last Semi-annual release of Windows Server. These server versions were an attempt to mirror the Windows 10 versioning, with a new release twice per year. These versions received support for 18 months following their release. Windows Server 20H2 is the last Semi-annual release of Windows Server to hit its end-of-life date. You can find more info and a specific Windows Server EOL audit in the Windows Server EOL blog post.

Exchange Elevation of Privilege Vulnerabilities

Three of the 17 critical vulnerabilities are elevation of privilege vulnerabilities in Exchange. Exchange has been routinely getting security updates this year as more and more security flaws are discovered. Microsoft does mention in their official advisories that exploitation of these vulnerabilities is more likely.

CVE-2022-24477, CVE-2022-24516, and CVE-2022-21980 all have a CVSS base score of 8.0. In addition to installing the latest updates, Microsoft lists that: «Customers vulnerable to this issue would need to enable Extended Protection in order to prevent this attack. For more information, see Exchange Server Support for Windows Extended Protection«

Lastly, in addition to the critical vulnerabilities, another 3 information disclosure vulnerabilities were fixed in Exchange. CVE-2022-34692, CVE-2022-30134, and CVE-2022-21979. The vulnerabilities are much lower in severity and their CVSS base score ranges between 4.8 and 7.6.

Windows 11 SMB Client and Server RCE

Another critical vulnerability is exclusive to Windows 11. With a CVSS base score of 8.8, CVE-2022-35804 is likely to be exploited according to the official advisory.

An issue in the Microsoft Server Message Block 3.1.1 (SMBv3) protocol and how it handles certain requests allows attackers who successfully exploit the vulnerability to execute code on the target system. Since this can both occur on the client and server side, there are two attack vectors:

  • For the vulnerability to be exploited on the SMB Client, an unauthenticated attacker would first need to configure a malicious SMBv3 server and convince a user to connect to it by enticing them to click a specially crafted link.
  • For the vulnerability to be exploited on the SMB Server, an authenticated attacker could send specially crafted packets from an SMB Client to a targeted SMBv3 Server.

Aside from installing the update which is highly recommended. Microsoft does have additional mitigation options and ways to protect your network when an update cannot be performed quickly.

Run the Patch Tuesday August 2022 Audit Report

To help manage your update progress, we’ve created the Patch Tuesday Audit Report that checks if the assets in your network are on the latest patch updates. The report has been color-coded to see which machines are up-to-date and which ones still need to be updated. As always, system administrators are urged to update their environment as soon as possible to ensure all endpoints are secured.

The Lansweeper Patch Tuesday report is automatically added to Lansweeper Cloud sites. Lansweeper Cloud is included in all our licenses without any additional cost and allows you to federate all your installations into one single view so all you need to do is look at one report, automatically added every patch Tuesday!

Patch Tuesday August 2022 CVE Codes & Titles

CVE NumberCVE Title
CVE-2022-35827Visual Studio Remote Code Execution Vulnerability
CVE-2022-35826Visual Studio Remote Code Execution Vulnerability
CVE-2022-35825Visual Studio Remote Code Execution Vulnerability
CVE-2022-35824Azure Site Recovery Remote Code Execution Vulnerability
CVE-2022-35821Azure Sphere Information Disclosure Vulnerability
CVE-2022-35820Windows Bluetooth Driver Elevation of Privilege Vulnerability
CVE-2022-35819Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35818Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35817Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35816Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35815Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35814Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35813Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35812Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35811Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35810Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35809Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35808Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35807Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35806Azure RTOS GUIX Studio Remote Code Execution Vulnerability
CVE-2022-35804SMB Client and Server Remote Code Execution Vulnerability
CVE-2022-35802Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35801Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35800Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35799Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35797Windows Hello Security Feature Bypass Vulnerability
CVE-2022-35795Windows Error Reporting Service Elevation of Privilege Vulnerability
CVE-2022-35794Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-35793Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-35792Storage Spaces Direct Elevation of Privilege Vulnerability
CVE-2022-35791Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35790Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35789Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35788Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35787Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35786Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35785Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35784Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35783Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35782Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35781Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35780Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35779Azure RTOS GUIX Studio Remote Code Execution Vulnerability
CVE-2022-35777Visual Studio Remote Code Execution Vulnerability
CVE-2022-35776Azure Site Recovery Denial of Service Vulnerability
CVE-2022-35775Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35774Azure Site Recovery Elevation of Privilege Vulnerability
CVE-2022-35773Azure RTOS GUIX Studio Remote Code Execution Vulnerability
CVE-2022-35772Azure Site Recovery Remote Code Execution Vulnerability
CVE-2022-35771Windows Defender Credential Guard Elevation of Privilege Vulnerability
CVE-2022-35769Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability
CVE-2022-35768Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-35767Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-35766Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-35765Storage Spaces Direct Elevation of Privilege Vulnerability
CVE-2022-35764Storage Spaces Direct Elevation of Privilege Vulnerability
CVE-2022-35763Storage Spaces Direct Elevation of Privilege Vulnerability
CVE-2022-35762Storage Spaces Direct Elevation of Privilege Vulnerability
CVE-2022-35761Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-35760Microsoft ATA Port Driver Elevation of Privilege Vulnerability
CVE-2022-35759Windows Local Security Authority (LSA) Denial of Service Vulnerability
CVE-2022-35758Windows Kernel Memory Information Disclosure Vulnerability
CVE-2022-35757Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2022-35756Windows Kerberos Elevation of Privilege Vulnerability
CVE-2022-35755Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-35754Unified Write Filter Elevation of Privilege Vulnerability
CVE-2022-35753Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-35752Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-35751Windows Hyper-V Elevation of Privilege Vulnerability
CVE-2022-35750Win32k Elevation of Privilege Vulnerability
CVE-2022-35749Windows Digital Media Receiver Elevation of Privilege Vulnerability
CVE-2022-35748HTTP.sys Denial of Service Vulnerability
CVE-2022-35747Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability
CVE-2022-35746Windows Digital Media Receiver Elevation of Privilege Vulnerability
CVE-2022-35745Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-35744Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability
CVE-2022-35743Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
CVE-2022-35742Microsoft Outlook Denial of Service Vulnerability
CVE-2022-34717Microsoft Office Remote Code Execution Vulnerability
CVE-2022-34716.NET Spoofing Vulnerability
CVE-2022-34715Windows Network File System Remote Code Execution Vulnerability
CVE-2022-34714Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-34713Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
CVE-2022-34712Windows Defender Credential Guard Information Disclosure Vulnerability
CVE-2022-34710Windows Defender Credential Guard Information Disclosure Vulnerability
CVE-2022-34709Windows Defender Credential Guard Security Feature Bypass Vulnerability
CVE-2022-34708Windows Kernel Information Disclosure Vulnerability
CVE-2022-34707Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-34706Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
CVE-2022-34705Windows Defender Credential Guard Elevation of Privilege Vulnerability
CVE-2022-34704Windows Defender Credential Guard Information Disclosure Vulnerability
CVE-2022-34703Windows Partition Management Driver Elevation of Privilege Vulnerability
CVE-2022-34702Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-34701Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability
CVE-2022-34699Windows Win32k Elevation of Privilege Vulnerability
CVE-2022-34696Windows Hyper-V Remote Code Execution Vulnerability
CVE-2022-34692Microsoft Exchange Information Disclosure Vulnerability
CVE-2022-34691Active Directory Domain Services Elevation of Privilege Vulnerability
CVE-2022-34690Windows Fax Service Elevation of Privilege Vulnerability
CVE-2022-34687Azure RTOS GUIX Studio Remote Code Execution Vulnerability
CVE-2022-34686Azure RTOS GUIX Studio Information Disclosure Vulnerability
CVE-2022-34685Azure RTOS GUIX Studio Information Disclosure Vulnerability
CVE-2022-34303CERT/CC: CVE-20220-34303 Crypto Pro Boot Loader Bypass
CVE-2022-34302CERT/CC: CVE-2022-34302 New Horizon Data Systems Inc Boot Loader Bypass
CVE-2022-34301CERT/CC: CVE-2022-34301 Eurosoft Boot Loader Bypass
CVE-2022-33670Windows Partition Management Driver Elevation of Privilege Vulnerability
CVE-2022-33648Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-33646Azure Batch Node Agent Elevation of Privilege Vulnerability
CVE-2022-33640System Center Operations Manager: Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability
CVE-2022-33631Microsoft Excel Security Feature Bypass Vulnerability
CVE-2022-30197Windows Kernel Information Disclosure Vulnerability
CVE-2022-30194Windows WebBrowser Control Remote Code Execution Vulnerability
CVE-2022-30176Azure RTOS GUIX Studio Remote Code Execution Vulnerability
CVE-2022-30175Azure RTOS GUIX Studio Remote Code Execution Vulnerability
CVE-2022-30144Windows Bluetooth Service Remote Code Execution Vulnerability
CVE-2022-30134Microsoft Exchange Information Disclosure Vulnerability
CVE-2022-30133Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability
CVE-2022-30130.NET Framework Denial of Service Vulnerability
CVE-2022-26832.NET Framework Denial of Service Vulnerability
CVE-2022-24516Microsoft Exchange Server Elevation of Privilege Vulnerability
CVE-2022-24477Microsoft Exchange Server Elevation of Privilege Vulnerability
CVE-2022-21980Microsoft Exchange Server Elevation of Privilege Vulnerability
CVE-2022-21979Microsoft Exchange Information Disclosure Vulnerability

Receive the Latest Patch Tuesday Report for FREE Every Month

"*" señala los campos obligatorios

Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo está oculto cuando se visualiza el formulario
Este campo es un campo de validación y debe quedar sin cambios.