Microsoft May 2022 Patch Tuesday fixes 3 zero-days, 75 flaws

TagCVE IDCVE TitleSeverity.NET and Visual StudioCVE-2022-29117.NET and Visual Studio Denial of Service VulnerabilityImportant.NET and Visual StudioCVE-2022-23267.NET and Visual Studio Denial of Service VulnerabilityImportant.NET and Visual StudioCVE-2022-29145.NET and Visual Studio Denial of Service VulnerabilityImportant.NET FrameworkCVE-2022-30130.NET Framework Denial of Service VulnerabilityLowAzure SHIRADV220001Upcoming improvements to Azure Data Factory and Azure Synapse Pipeline infrastructure in response to CVE-2022-29972CriticalMicrosoft Exchange ServerCVE-2022-21978Microsoft Exchange Server Elevation of Privilege VulnerabilityImportantMicrosoft Graphics ComponentCVE-2022-26934Windows Graphics Component Information Disclosure VulnerabilityImportantMicrosoft Graphics ComponentCVE-2022-22011Windows Graphics Component Information Disclosure VulnerabilityImportantMicrosoft Graphics ComponentCVE-2022-29112Windows Graphics Component Information Disclosure VulnerabilityImportantMicrosoft Graphics ComponentCVE-2022-26927Windows Graphics Component Remote Code Execution VulnerabilityImportantMicrosoft Local Security Authority Server (lsasrv)CVE-2022-26925Windows LSA Spoofing VulnerabilityImportantMicrosoft OfficeCVE-2022-29107Microsoft Office Security Feature Bypass VulnerabilityImportantMicrosoft Office ExcelCVE-2022-29109Microsoft Excel Remote Code Execution VulnerabilityImportantMicrosoft Office ExcelCVE-2022-29110Microsoft Excel Remote Code Execution VulnerabilityImportantMicrosoft Office SharePointCVE-2022-29108Microsoft SharePoint Server Remote Code Execution VulnerabilityImportantMicrosoft Windows ALPCCVE-2022-23279Windows ALPC Elevation of Privilege VulnerabilityImportantRemote Desktop ClientCVE-2022-26940Remote Desktop Protocol Client Information Disclosure VulnerabilityImportantRemote Desktop ClientCVE-2022-22017Remote Desktop Client Remote Code Execution VulnerabilityCriticalRole: Windows Fax ServiceCVE-2022-29115Windows Fax Service Remote Code Execution VulnerabilityImportantRole: Windows Hyper-VCVE-2022-22713Windows Hyper-V Denial of Service VulnerabilityImportantRole: Windows Hyper-VCVE-2022-24466Windows Hyper-V Security Feature Bypass VulnerabilityImportantRole: Windows Hyper-VCVE-2022-29106Windows Hyper-V Shared Virtual Disk Elevation of Privilege VulnerabilityImportantSelf-hosted Integration RuntimeCVE-2022-29972Insight Software: CVE-2022-29972 Magnitude Simba Amazon Redshift ODBC DriverCriticalTablet Windows User InterfaceCVE-2022-29126Tablet Windows User Interface Application Core Elevation of Privilege VulnerabilityImportantVisual StudioCVE-2022-29148Visual Studio Remote Code Execution VulnerabilityImportantVisual Studio CodeCVE-2022-30129Visual Studio Code Remote Code Execution VulnerabilityImportantWindows Active DirectoryCVE-2022-26923Active Directory Domain Services Elevation of Privilege VulnerabilityCriticalWindows Address BookCVE-2022-26926Windows Address Book Remote Code Execution VulnerabilityImportantWindows Authentication MethodsCVE-2022-26913Windows Authentication Security Feature Bypass VulnerabilityImportantWindows BitLockerCVE-2022-29127BitLocker Security Feature Bypass VulnerabilityImportantWindows Cluster Shared Volume (CSV)CVE-2022-29122Windows Clustered Shared Volume Information Disclosure VulnerabilityImportantWindows Cluster Shared Volume (CSV)CVE-2022-29135Windows Cluster Shared Volume (CSV) Elevation of Privilege VulnerabilityImportantWindows Cluster Shared Volume (CSV)CVE-2022-29138Windows Clustered Shared Volume Elevation of Privilege VulnerabilityImportantWindows Cluster Shared Volume (CSV)CVE-2022-29134Windows Clustered Shared Volume Information Disclosure VulnerabilityImportantWindows Cluster Shared Volume (CSV)CVE-2022-29120Windows Clustered Shared Volume Information Disclosure VulnerabilityImportantWindows Cluster Shared Volume (CSV)CVE-2022-29151Windows Cluster Shared Volume (CSV) Elevation of Privilege VulnerabilityImportantWindows Cluster Shared Volume (CSV)CVE-2022-29123Windows Clustered Shared Volume Information Disclosure VulnerabilityImportantWindows Cluster Shared Volume (CSV)CVE-2022-29150Windows Cluster Shared Volume (CSV) Elevation of Privilege VulnerabilityImportantWindows Failover Cluster Automation ServerCVE-2022-29102Windows Failover Cluster Information Disclosure VulnerabilityImportantWindows KerberosCVE-2022-26931Windows Kerberos Elevation of Privilege VulnerabilityCriticalWindows KernelCVE-2022-29142Windows Kernel Elevation of Privilege VulnerabilityImportantWindows KernelCVE-2022-29116Windows Kernel Information Disclosure VulnerabilityImportantWindows KernelCVE-2022-29133Windows Kernel Elevation of Privilege VulnerabilityImportantWindows LDAP – Lightweight Directory Access ProtocolCVE-2022-29141Windows LDAP Remote Code Execution VulnerabilityImportantWindows LDAP – Lightweight Directory Access ProtocolCVE-2022-22014Windows LDAP Remote Code Execution VulnerabilityImportantWindows LDAP – Lightweight Directory Access ProtocolCVE-2022-29137Windows LDAP Remote Code Execution VulnerabilityImportantWindows LDAP – Lightweight Directory Access ProtocolCVE-2022-29139Windows LDAP Remote Code Execution VulnerabilityImportantWindows LDAP – Lightweight Directory Access ProtocolCVE-2022-22013Windows LDAP Remote Code Execution VulnerabilityImportantWindows LDAP – Lightweight Directory Access ProtocolCVE-2022-22012Windows LDAP Remote Code Execution VulnerabilityImportantWindows LDAP – Lightweight Directory Access ProtocolCVE-2022-29128Windows LDAP Remote Code Execution VulnerabilityImportantWindows LDAP – Lightweight Directory Access ProtocolCVE-2022-29129Windows LDAP Remote Code Execution VulnerabilityImportantWindows LDAP – Lightweight Directory Access ProtocolCVE-2022-29130Windows LDAP Remote Code Execution VulnerabilityImportantWindows LDAP – Lightweight Directory Access ProtocolCVE-2022-29131Windows LDAP Remote Code Execution VulnerabilityImportantWindows MediaCVE-2022-29105Microsoft Windows Media Foundation Remote Code Execution VulnerabilityImportantWindows MediaCVE-2022-29113Windows Digital Media Receiver Elevation of Privilege VulnerabilityImportantWindows MediaCVE-2022-22016Windows PlayToManager Elevation of Privilege VulnerabilityImportantWindows Network File SystemCVE-2022-26937Windows Network File System Remote Code Execution VulnerabilityCriticalWindows NTFSCVE-2022-26933Windows NTFS Information Disclosure VulnerabilityImportantWindows Point-to-Point Tunneling ProtocolCVE-2022-23270Point-to-Point Tunneling Protocol Remote Code Execution VulnerabilityCriticalWindows Point-to-Point Tunneling ProtocolCVE-2022-21972Point-to-Point Tunneling Protocol Remote Code Execution VulnerabilityCriticalWindows Print Spooler ComponentsCVE-2022-29104Windows Print Spooler Elevation of Privilege VulnerabilityImportantWindows Print Spooler ComponentsCVE-2022-29132Windows Print Spooler Elevation of Privilege VulnerabilityImportantWindows Print Spooler ComponentsCVE-2022-29140Windows Print Spooler Information Disclosure VulnerabilityImportantWindows Print Spooler ComponentsCVE-2022-29114Windows Print Spooler Information Disclosure VulnerabilityImportantWindows Push NotificationsCVE-2022-29125Windows Push Notifications Apps Elevation of Privilege VulnerabilityImportantWindows Remote Access Connection ManagerCVE-2022-29103Windows Remote Access Connection Manager Elevation of Privilege VulnerabilityImportantWindows Remote Access Connection ManagerCVE-2022-26930Windows Remote Access Connection Manager Information Disclosure VulnerabilityImportantWindows Remote DesktopCVE-2022-22015Windows Remote Desktop Protocol (RDP) Information Disclosure VulnerabilityImportantWindows Remote Procedure Call RuntimeCVE-2022-22019Remote Procedure Call Runtime Remote Code Execution VulnerabilityImportantWindows Server ServiceCVE-2022-26936Windows Server Service Information Disclosure VulnerabilityImportantWindows Storage Spaces ControllerCVE-2022-26932Storage Spaces Direct Elevation of Privilege VulnerabilityImportantWindows Storage Spaces ControllerCVE-2022-26939Storage Spaces Direct Elevation of Privilege VulnerabilityImportantWindows Storage Spaces ControllerCVE-2022-26938Storage Spaces Direct Elevation of Privilege VulnerabilityImportantWindows WLAN Auto Config ServiceCVE-2022-29121Windows WLAN AutoConfig Service Denial of Service VulnerabilityImportantWindows WLAN Auto Config ServiceCVE-2022-26935Windows WLAN AutoConfig Service Information Disclosure VulnerabilityImportant

Source

About Author