Kimsuky APT Group Targeting Android Devices – Active IOCs
October 28, 2022Rewterz Threat Alert – Chaos Ransomware – Active IOCs
November 7, 2022Kimsuky APT Group Targeting Android Devices – Active IOCs
October 28, 2022Rewterz Threat Alert – Chaos Ransomware – Active IOCs
November 7, 2022Severity
High
Analysis Summary
CVE-2022-37982 CVSS:8.8
Microsoft Windows could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the WDAC OLE DB provider for SQL Server. By tricking an authenticated user into attempting to connect to a malicious SQL server via OLEDB, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2022-38031 CVSS:8.8
Microsoft Windows could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the WDAC OLE DB provider for SQL Server. By tricking an authenticated user into attempting to connect to a malicious SQL server via OLEDB, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2022-37982
- CVE-2022-38031
Affected Vendors
Microsoft
Affected Products
Microsoft Windows 7 SP1 x32
Microsoft Windows 7 SP1 x64
Microsoft Windows Server 2012
Microsoft Windows 8.1 x32
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.