Back to Blog
Detection and Response

Patch Tuesday - September 2022

Greg Wiseman
Greg Wiseman
|Last updated on Sep 13, 2022|1 min read
LinkedInFacebookX
Patch Tuesday - September 2022

This month’s Patch Tuesday is on the lighter side, with 79 CVEs being fixed by Microsoft (including 16 CVEs affecting Chromium, used by their Edge browser, that were already available). One zero-day was announced: CVE-2022-37969 is an elevation of privilege vulnerability affecting the Log File System Driver in all supported versions of Windows, allowing attackers to gain SYSTEM-level access on an asset they’ve already got an initial foothold in. Interestingly, Microsoft credits four separate researchers/organizations for independently reporting this, which may be indicative of relatively widespread exploitation. Also previously disclosed (in March), though less useful to attackers, Microsoft has released a fix for CVE-2022-23960 (aka Spectre-BHB) for Windows 11 on ARM64.

Some of the more noteworthy vulnerabilities this month affect Windows systems with IPSec enabled. CVE-2022-34718 allows remote code execution (RCE) on any Windows system reachable via IPv6; CVE-2022-34721 and CVE-2022-34722 are RCE vulnerabilities in the Windows Internet Key Exchange (IKE) Protocol Extensions. All three CVEs are ranked Critical and carry a CVSSv3 base score of 9.8. Rounding out the Critical RCEs this month are CVE-2022-35805 and CVE-2022-34700, both of which affect Microsoft Dynamics (on-premise) and have a CVSSv3 base score of 8.8. Any such systems should be updated immediately.

SharePoint administrators should also be aware of four separate RCEs being addressed this month. They’re ranked Important, meaning Microsoft recommends applying the updates at the earliest opportunity. Finally, a large swath of CVEs affecting OLE DB Provider for SQL Server and the Microsoft ODBC Driver were also fixed. These require some social engineering to exploit, by convincing a user to either connect to a malicious SQL Server or open a maliciously crafted .mdb (Access) file.

Summary charts

2022-09-vuln_count_severity.png2022-09-vuln_count_impact.png2022-09-cvssv3_hist.png2022-09-vuln_count_component.png

Summary tables

Azure vulnerabilities

CVETitleExploited?Publicly disclosed?CVSSv3 base scoreHas FAQ?
CVE-2022-38007Azure Guest Configuration and Azure Arc-enabled servers Elevation of Privilege VulnerabilityNoNo7.8Yes

Browser vulnerabilities

CVETitleExploited?Publicly disclosed?CVSSv3 base scoreHas FAQ?
CVE-2022-38012Microsoft Edge (Chromium-based) Remote Code Execution VulnerabilityNoNo7.7Yes
CVE-2022-3075Chromium: CVE-2022-3075 Insufficient data validation in MojoNoNoN/AYes
CVE-2022-3058Chromium: CVE-2022-3058 Use after free in Sign-In FlowNoNoN/AYes
CVE-2022-3057Chromium: CVE-2022-3057 Inappropriate implementation in iframe SandboxNoNoN/AYes
CVE-2022-3056Chromium: CVE-2022-3056 Insufficient policy enforcement in Content Security PolicyNoNoN/AYes
CVE-2022-3055Chromium: CVE-2022-3055 Use after free in PasswordsNoNoN/AYes
CVE-2022-3054Chromium: CVE-2022-3054 Insufficient policy enforcement in DevToolsNoNoN/AYes
CVE-2022-3053Chromium: CVE-2022-3053 Inappropriate implementation in Pointer LockNoNoN/AYes
CVE-2022-3047Chromium: CVE-2022-3047 Insufficient policy enforcement in Extensions APINoNoN/AYes
CVE-2022-3046Chromium: CVE-2022-3046 Use after free in Browser TagNoNoN/AYes
CVE-2022-3045Chromium: CVE-2022-3045 Insufficient validation of untrusted input in V8NoNoN/AYes
CVE-2022-3044Chromium: CVE-2022-3044 Inappropriate implementation in Site IsolationNoNoN/AYes
CVE-2022-3041Chromium: CVE-2022-3041 Use after free in WebSQLNoNoN/AYes
CVE-2022-3040Chromium: CVE-2022-3040 Use after free in LayoutNoNoN/AYes
CVE-2022-3039Chromium: CVE-2022-3039 Use after free in WebSQLNoNoN/AYes
CVE-2022-3038Chromium: CVE-2022-3038 Use after free in Network ServiceNoNoN/AYes

Developer Tools vulnerabilities

CVETitleExploited?Publicly disclosed?CVSSv3 base scoreHas FAQ?
CVE-2022-26929.NET Framework Remote Code Execution VulnerabilityNoNo7.8Yes
CVE-2022-38013.NET Core and Visual Studio Denial of Service VulnerabilityNoNo7.5No
CVE-2022-38020Visual Studio Code Elevation of Privilege VulnerabilityNoNo7.3Yes

ESU vulnerabilities

CVETitleExploited?Publicly disclosed?CVSSv3 base scoreHas FAQ?
CVE-2022-37964Windows Kernel Elevation of Privilege VulnerabilityNoNo7.8No

Microsoft Dynamics vulnerabilities

CVETitleExploited?Publicly disclosed?CVSSv3 base scoreHas FAQ?
CVE-2022-35805Microsoft Dynamics CRM (on-premises) Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-34700Microsoft Dynamics CRM (on-premises) Remote Code Execution VulnerabilityNoNo8.8Yes

Microsoft Office vulnerabilities

CVETitleExploited?Publicly disclosed?CVSSv3 base scoreHas FAQ?
CVE-2022-38008Microsoft SharePoint Server Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-38009Microsoft SharePoint Server Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-37961Microsoft SharePoint Server Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-35823Microsoft SharePoint Remote Code Execution VulnerabilityNoNo8.1Yes
CVE-2022-37962Microsoft PowerPoint Remote Code Execution VulnerabilityNoNo7.8Yes
CVE-2022-38010Microsoft Office Visio Remote Code Execution VulnerabilityNoNo7.8Yes
CVE-2022-37963Microsoft Office Visio Remote Code Execution VulnerabilityNoNo7.8Yes

System Center vulnerabilities

CVETitleExploited?Publicly disclosed?CVSSv3 base scoreHas FAQ?
CVE-2022-35828Microsoft Defender for Endpoint for Mac Elevation of Privilege VulnerabilityNoNo7.8Yes

Windows vulnerabilities

CVETitleExploited?Publicly disclosed?CVSSv3 base scoreHas FAQ?
CVE-2022-35841Windows Enterprise App Management Service Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-30196Windows Secure Channel Denial of Service VulnerabilityNoNo8.2Yes
CVE-2022-37957Windows Kernel Elevation of Privilege VulnerabilityNoNo7.8Yes
CVE-2022-37954DirectX Graphics Kernel Elevation of Privilege VulnerabilityNoNo7.8Yes
CVE-2022-38019AV1 Video Extension Remote Code Execution VulnerabilityNoNo7.8Yes
CVE-2022-35838HTTP V3 Denial of Service VulnerabilityNoNo7.5No
CVE-2022-38011Raw Image Extension Remote Code Execution VulnerabilityNoNo7.3Yes
CVE-2022-26928Windows Photo Import API Elevation of Privilege VulnerabilityNoNo7Yes
CVE-2022-34725Windows ALPC Elevation of Privilege VulnerabilityNoNo7Yes
CVE-2022-37959Network Device Enrollment Service (NDES) Security Feature Bypass VulnerabilityNoNo6.5Yes
CVE-2022-35831Windows Remote Access Connection Manager Information Disclosure VulnerabilityNoNo5.5Yes
CVE-2022-34723Windows DPAPI (Data Protection Application Programming Interface) Information Disclosure VulnerabilityNoNo5.5Yes
CVE-2022-23960Arm: CVE-2022-23960 Cache Speculation Restriction VulnerabilityNoYesN/AYes

Windows ESU vulnerabilities

CVETitleExploited?Publicly disclosed?CVSSv3 base scoreHas FAQ?
CVE-2022-34718Windows TCP/IP Remote Code Execution VulnerabilityNoNo9.8Yes
CVE-2022-34721Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution VulnerabilityNoNo9.8Yes
CVE-2022-34722Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution VulnerabilityNoNo9.8Yes
CVE-2022-35834Microsoft OLE DB Provider for SQL Server Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-35835Microsoft OLE DB Provider for SQL Server Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-35836Microsoft OLE DB Provider for SQL Server Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-35840Microsoft OLE DB Provider for SQL Server Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-34731Microsoft OLE DB Provider for SQL Server Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-34733Microsoft OLE DB Provider for SQL Server Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-34726Microsoft ODBC Driver Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-34727Microsoft ODBC Driver Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-34730Microsoft ODBC Driver Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-34732Microsoft ODBC Driver Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-34734Microsoft ODBC Driver Remote Code Execution VulnerabilityNoNo8.8Yes
CVE-2022-33679Windows Kerberos Elevation of Privilege VulnerabilityNoNo8.1Yes
CVE-2022-33647Windows Kerberos Elevation of Privilege VulnerabilityNoNo8.1Yes
CVE-2022-35830Remote Procedure Call Runtime Remote Code Execution VulnerabilityNoNo8.1Yes
CVE-2022-38005Windows Print Spooler Elevation of Privilege VulnerabilityNoNo7.8Yes
CVE-2022-30200Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution VulnerabilityNoNo7.8Yes
CVE-2022-37956Windows Kernel Elevation of Privilege VulnerabilityNoNo7.8Yes
CVE-2022-37955Windows Group Policy Elevation of Privilege VulnerabilityNoNo7.8Yes
CVE-2022-34729Windows GDI Elevation of Privilege VulnerabilityNoNo7.8Yes
CVE-2022-38004Windows Fax Service Remote Code Execution VulnerabilityNoNo7.8Yes
CVE-2022-34719Windows Distributed File System (DFS) Elevation of Privilege VulnerabilityNoNo7.8Yes
CVE-2022-37969Windows Common Log File System Driver Elevation of Privilege VulnerabilityYesYes7.8Yes
CVE-2022-35803Windows Common Log File System Driver Elevation of Privilege VulnerabilityNoNo7.8Yes
CVE-2022-35833Windows Secure Channel Denial of Service VulnerabilityNoNo7.5No
CVE-2022-34720Windows Internet Key Exchange (IKE) Extension Denial of Service VulnerabilityNoNo7.5No
CVE-2022-34724Windows DNS Server Denial of Service VulnerabilityNoNo7.5No
CVE-2022-37958SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Information Disclosure VulnerabilityNoNo7.5Yes
CVE-2022-30170Windows Credential Roaming Service Elevation of Privilege VulnerabilityNoNo7.3Yes
CVE-2022-38006Windows Graphics Component Information Disclosure VulnerabilityNoNo6.5Yes
CVE-2022-34728Windows Graphics Component Information Disclosure VulnerabilityNoNo5.5Yes
CVE-2022-35832Windows Event Tracing Denial of Service VulnerabilityNoNo5.5No
CVE-2022-35837Windows Graphics Component Information Disclosure VulnerabilityNoNo5Yes

NEVER MISS A BLOG

Get the latest stories, expertise, and news about security today.

Subscribe

Article Tags

Author

Greg Wiseman
Greg Wiseman
Authors's Posts

Related blog posts