Security News > 2022 > May > Microsoft closes Windows LSA hole under active attack

Microsoft closes Windows LSA hole under active attack
2022-05-11 01:15

Microsoft patched 74 security flaws in its May Patch Tuesday batch of updates.

At least one of the vulnerabilities disclosed is under active attack with public exploit code, according to Redmond, while two others are listed as having public exploit code.

The bug that's being exploited in the wild is a Windows LSA spoofing vulnerability tracked as CVE-2022-26925.

While the software giant classified the attack complexity as "High," it also noted that the vuln is under active attack.

The second publicly disclosed bug, CVE-2022-22713, is a denial-of-service vulnerability in Windows Hyper-V. Microsoft says exploitation of this one is less likely and requires an attacker to win a race condition.

"The only thing that prevents this vulnerability from being tagged with a higher CVSS is the fact that an attacker must entice a victim to log on to the administration UI using a browser and that the attack is highly complex," the researchers wrote.


News URL

https://go.theregister.com/feed/www.theregister.com/2022/05/11/microsoft_patch_tuesday/

Related news

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2022-05-10 CVE-2022-26925 Missing Authentication for Critical Function vulnerability in Microsoft products
Windows LSA Spoofing Vulnerability
network
high complexity
microsoft CWE-306
5.9
5.9
2022-05-10 CVE-2022-22713 Unspecified vulnerability in Microsoft Windows 10 and Windows Server
Windows Hyper-V Denial of Service Vulnerability
local
high complexity
microsoft
5.6
5.6

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 480 75 2308 5128 264 7775