Site icon API Security Blog

KB5017308: Windows 10 Version 20H2 / 21H1 / 21H2 Security Update (September 2022)

The remote Windows host is missing security update 5017308. It is, therefore, affected by multiple vulnerabilities

– Windows Photo Import API Elevation of Privilege Vulnerability (CVE-2022-26928)

– Windows Credential Roaming Service Elevation of Privilege Vulnerability (CVE-2022-30170)

– Windows Secure Channel Denial of Service Vulnerability (CVE-2022-30196, CVE-2022-35833)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.Read More

Exit mobile version