Microsoft tshaj tawm thaj tsam kev nyab xeeb rau hauv cov tsiaj qus txhua lub hlis ntawm "Patch Tuesday," tab sis qhov hloov tshiab tshiab no tseem ceeb tshwj xeeb.
Lub tuam txhab tau hais kom cov neeg siv khoom rub tawm thiab nruab qhov kev ruaj ntseg tshiab tshiab, raws li cov lus tshaj tawm los ntawm Microsoft Security Response Center. Qhov kev hloov tshiab no hais txog ntau qhov tsis zoo rau Windows 11 thiab Windows Server 2022 cov neeg siv.
Dab tsi yog qhov loj? Qhov hloov tshiab ntsaws ib ncig ntawm 120 qhov kev nyab xeeb, uas suav nrog rau xoom-hnub thaj ua rau thaj. Qhov ntawd yog qhov sib piv rau cov chav kawm niaj hnub no, tab sis ib qho ntawm qhov tsis zoo patched yog "wormable," uas yog qhov txaus ntshai dua. Qhov kev hem thawj uas muaj peev xwm tuaj yeem nthuav tawm tus kheej, txhais tau hais tias tsis muaj tib neeg xav tau kev tawm tsam kom kis ntawm ib lub computer mus rau lwm qhov.
This HTTP Protocol Stack Remote Code Execution vulnerability, hlub lub npe CVE-2022-21907, tsis paub tias ua haujlwm, tab sis lub tuam txhab tsis muaj sijhawm.
"Cov khoom tsis zoo yog khi rau hauv pawg network, thiab cov txheej txheem ntawm cov neeg tawm tsam tuaj yeem txuas ntxiv dhau ntawm lwm cov kev xaiv tau teev tseg, mus txog thiab suav nrog tag nrho Internet," Microsoft sau.
Microsoft suav txog cuaj qhov kev tsis txaus siab no yog qhov tseem ceeb, txhais tau tias ne'er-do-wells tuaj yeem siv lawv los ntawm kev nkag mus rau hauv ib qho kev cuam tshuam hauv computer.
Lub tuam txhab tau hais txog qhov kev hem thawj uas tuaj yeem tshwm sim zaum kawg hauv lub Tsib Hlis 2021, thiab tsawg dua ib lub lis piam tom qab, lub koos pij tawj siv qhov tsis zoo tau tshaj tawm online. Hauv lwm lo lus, kos rau thiab nruab qhov hloov tshiab tam sim ntawd.